sophisticated Defense Department tools

"The hacks are troubling in that they appear to have rendered useless supposedly sophisticated Defense Department tools and procedures designed to prevent such breaches. The department and its branches spend millions of dollars each year on pricey security and antivirus software and employ legions of experts to deploy and manage the tools"

No amount of tacked-on 'security' will secure 'webservers'. What is needed is embedded hardware providing a secure VPN and PKI infrastructure. That way you only have a single set of nodes to watch instead of multiple/differing Windows configurations. That way if a 'webservers' is vulnerable to an 'SQL injection attack', the hackers won't see it. Else you expend energy in futile solution such as above.

Yet again

Insert XKCD comic concerning input sanitation.

Hmmm. Kingdom of Heaven

I for one am fairly glad that the MoD and their counterparts over the pond can't be arsed with such trivialities. I nearly piss myself laughing several times a week reading how these murderous wasters have been undone and found with heads up their own arses because they were discovered to be not f*cking omnipotent.

The sooner the infernal military machines are decommissioned and put out to grass, the better for all of us. What a waste of money never mind life.

Look for proper IT work, like securing public websites and we'll all sleep better at night.

ALF

Army loves it

I do think that the army likes to have these things to report. It's part of their plan to get more funding for "cyberwar".

I'm sorry but...

Given the resources that the US government has, there's absolutely NO excuse for crap like this, especially as related to the DoD. If people have legitimate reason to access their servers, they should be given a client that makes use of either a short term certificate or an inexpensive token.

It's one thing to have publically available web servers, for people who wish to learn more about the military; but for vendors, contractors, and military personnel, every connection should be secured via VPN and the semi-trusted network should be restricted through a series of firewalls and terminal servers that might be allowed to VPN in to more deeply secured networks.

Fock, that's just sloppy on the DoD's part!

Islamic Terrorists, Eco Terrorists, Red Communists Aligning?

"Turkey-based collective known as "m0sted" and caused people attempting to access the site to be redirected to a webpage protesting climate change."

"in September 2007... They sent site visitors to m0sted.com, which at the time contained anti-American and anti-Israeli rhetoric"

U.N. official attack, whose home nation has been under antagonistic military & nuclear weapons pressure by Red Communist neighbor - http://world.commongate.com/post/United_Nations_website_breached_by_hackers/

Eco Terrorists, Islamic Terrorists, and Red Communists are aligning?

A relationship of convenience?

Young Turks

Hahahahahahahah @ US Army Twonks

virtual reality

it soap opera?

Could it be that we're all living in such a bubble? All these it security breaches are merely cliff-hangers for the next episode? none of it is real? It all seems too unbelievable otherwise.

Mines the one with the bar of carbolic in the pocket, ta.