“Several parts of the federal government have been shut down for about a month now, and cybersecurity professionals say government websites are becoming more vulnerable to security breaches each day the shutdown lasts,” writes Laura Sydell in their recent NPR article entitled “Shutdown Makes Government Websites More Vulnerable To Hackers, Experts Say.”
Sydell writes that “Visitors to manufacturing.gov, for instance, are finding that the site has become unusable — its information about the manufacturing sector is no longer accessible. Instead, it features this message at the top of the homepage: NOTICE: Due to a lapse in appropriations, Manufacturing.gov and all associated online activities will be unavailable until further notice.”
“Security certificates help keep websites secure, but last week the British security firm Netcraft reported that more than 130 certificates used by U.S. government websites had expired,” the NPR article continues.
According to Sydell, “These certificates make sure users know ‘this is really the government resource that I'm trying to access and not some bad guy,” explains Dan Kaminsky, the chief scientist at the security firm White Ops in the article.
“The lack of a certificate makes it easier for a bad actor to trick you into going to a fake site. Even though there's a warning when you click on a site without an updated certificate, Kaminsky says in the article, ‘people might get used to ignoring the browser warnings’ because of the shutdown. ‘Then you think you're really walking into this site and you're really not."
“He offers a worst-case scenario: Imagine if the security certificate was down for the Social Security Administration website and a bad actor set up a fake site. Someone could go to the bogus site, enter their password, and give the hackers access to personal information,” shares Sydell.
Question: do you have everything in place to make your property less vulnerable?
Or, are you running things constantly behind the eight ball?
Does your operation have deficiencies that lead to you and your team being vulnerable?
If so, let’s change that today.
Keep reading; whether you’ve got the right things in place to keep your vulnerability down, we’ve got insight in this article you can use.