Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

DOD continues to buy products it knows have cybersecurity vulnerabilities

From: InfoSec News <alerts () infosecnews org>
Date: Mon, 5 Aug 2019 12:00:08 +0000 (UTC)
https://www.fedscoop.com/defense-department-known-cyber-vulnerabilities-lenovo-lexmark-gopro/

By Jackson Barnett
FEDSCOOP
July 31, 2019

The Department of Defense continues to buy millions of dollars in commercial
off-the-shelf technology with known cybersecurity vulnerabilities, a watchdog
report published last week found.

The DOD inspector general’s report listed Lenovo computers, Lexmark printers and
GoPro cameras as examples of unsecured equipment listed in the National
Vulnerabilities Database that the DOD continues to purchase and use.

The equipment was purchased years — or in some cases more than a decade — after
the cybersecurity vulnerabilities were known.

“If the DoD continues to purchase and use [commercial off the shelf] items
without identifying, assessing, and mitigating known vulnerabilities associated
with [commercial off the shelf] items, missions critical to national security
could be compromised,” the report states.

[...]


--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
Previous By Date Next
Previous By Thread Next

Current thread: