Viewing a single comment thread. View all comments

phdoofus t1_jabom9f wrote

This is a failure by Congress mostly to not fund and prioritize IT security. The US nuke labs get their computers hammered all of the time by outside actors but you never hear about breaches there. OPM, not so much. Why? Someone at OPM probably asked about IT security at one point and Congress basically said 'Nah, there ain't no money for that and what do you need it for anyway?'. Source: have worked for nuke labs.

4

TitoMPG t1_jacal1t wrote

Mind if I asked why yall aren't airgapped?

1

phdoofus t1_jacpc58 wrote

The real systems that have the shit that you don't want anyone to touch ever, are. There are even measures beyond that to ensure security. However, depending on the lab, they also have a number of programs that need to interact either with researchers not 'behind the fence' or with other branches of the .gov or even with the public. Those get hammered all the time.

2