US Government shut downs impact cyber security

posted in: Viewpoints | 0

by Jennifer Daffron and Kelly Quantrill

Many US government employees are currently struggling with the ongoing effects of the US Government shutdown. Due to precedents set by previous government shutdowns, impacts such long lines at airports and national park closures were expected. However, several effects were not anticipated them, including slipping standards in food safety inspections and cyber security.

With many government staff furloughed, IT maintenance has taken a backseat. Operating with less than half of its staff, the Department of Homeland Security’s newly-created cyber security and infrastructure security agency has allowed more than 80 TLS certificates used by .gov websites to expire. This translates to dozens of US government websites presented as insecure or completely inaccessible. These sites included NASA, the US Department of Justice, and the Court of Appeals. If users continued onto insecure domains, they put themselves at risk to man-in-the-middle-attacks. These attacks allow for an unauthorised third party to intercept sensitive data and communication between two users – in these cases, the client and the website. This data can include credit card information, location data, and any other personal identifiable information.

Jennifer Daffron

Jennifer Daffron

Dr Jennifer Daffron's research interests include defining and exposing cyber threat vulnerabilities on organisational and human behavioural platforms. Jennifer holds a PhD in Experimental Psychology from the University of Cambridge. Prior to joining the Risk Centre, Jennifer completed postdoctoral research at the University of Cambridge's Department of Psychology and has published several papers on attentional templates in visual search.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.