indianz.com your internet resource indianz.com on facebook indianz.com on twitter indianz.com on Google+ indianz.com on soundcloud
phone: 202 630 8439
Native American Bank - Native people investing in Native communities
Advertise on Indianz.Com
Home > News > Headlines
Print   Subscribe
Bureau of Indian Affairs still failing on online security measures

Filed Under: National | Technology | Trust
More on: bia, bie, doi, donald trump, george bush, hhs, internet, oig, ost, ryan zinke
     
   

Mike Black, the acting Assistant Secretary for Indian Affairs, addresses the winter session of the National Congress of American Indians in Washington, D.C., on February 14, 2017. Photo by Indianz.Com / Available for use under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License

More than 15 years after a computer shutdown sent Indian Country into turmoil, the federal government is still failing to protect its online systems, according to a new watchdog report.

In December 2001, the Bureau of Indian Affairs was forced to disconnect its computers from the internet because billions of dollars in Indian trust funds were vulnerable to loss. Despite widespread attention to the problem by the media, the courts and Congress, the agency is still struggling to address it.

The Department of the Interior's Office of Inspector General in fact called security efforts at the BIA "immature" in the new report. The agency, along with its Bureau of Indian Education, was singled out as consistently failing to correct "thousands" of information technology vulnerabilities.

"We found that the BIA's management practices failed to detect critical and high-risk vulnerabilities" on one particular system, the report stated.

The OIG did not identify which system was at major risk -- the name was redacted from report. But it was described as "high-value IT asset that contains personally identifiable information," indicating it could be one that houses the trust data of individual Indians or tribes, or one with information about BIA employees, the overwhelming majority of whom are tribal citizens.

The problem wasn't isolated either. According to the report, the agency "left thousands of critical and high-risk vulnerabilities unmitigated for years on other BIA and BIE systems."

The BIA in fact never installed systems-management software on any of the 209 BIE devices that were tested in 2016 as part of the OIG's review. The reason? No one bothered to find the money for the effort, the report stated.

"This occurred because Indian Affairs, which includes both BIA and BIE, did not fund the purchase of IBM BigFix licenses for BIE systems," the OIG said.

The BIA has since promised to complete the installation of the software on the 209 BIE devices by April, according to the report. Most devices in fact already have BigFix, former acting assistant secretary Larry Roberts and another top official said in a letter signed in the waning days of the Obama administration.

But the overall effort appears to be slow-moving. According to Roberts, the target date for ensuring all devices at the BIA and the BIE are covered is more than a year away, or June 30, 2018.

"Until BIA improves its IT security practices and [the Office of Chief Information Office at DOI] strengthens its oversight role, BIA high-value IT assets will remain at high risk of compromise, the results of which could have a serious adverse effect on DOI operations and cause the loss of sensitive data," the report said.

The BIA wasn't the only agency at Interior with IT management issues, though. The report cited a March 2016 incident in which a "power outage" caused problems for the BIA, the Department of Health and Health and Human Services and the Office of Special Trustee for American Indians.

The entity responsible for that outage was redacted in the report but it appears to be one with a very short acronym. The incident was the result of "inadequate contingency planning and plan testing" by said entity, the OIG asserted.

The 2001 shutdown at BIA came during the throes of the Cobell trust fund lawsuit after a federal judge found that hackers were able to penetrate systems containing the data of hundreds of thousands of individual Indians. A security expert later testified how he was easily able to exploit weaknesses at Interior through the public internet.

It took four years of additional shutdowns and repeated trips to a federal appeals court before the BIA and other DOI entities came back online. During the interim, trust fund payments to individual Indians and even to tribes were delayed, causing hardship throughout the nation.

Interior spends about $1 billion a year on information technology, according to the report. But the Indian trust shutdown, while it had a large impact at the time, has largely faded from public view since former Republican president George W. Bush left office.

A Republican, Donald Trump, is back in the White House and Interior is awaiting the arrival of Ryan Zinke, a Republican Congressman from Montana, as its new leader. His nomination will finally be considered by the Senate next week.

Office of Inspector General Report:
Information Technology Security Weaknesses at a Core Data Center Could Expose Sensitive Data (February 2017)


Copyright © Indianz.Com
More headlines...
Stay Connected:
On Facebook

On Twitter

On Google+

On SoundCloud
Local Links:
Federal Register | Indian Gaming | Jobs & Notices | In The Hoop | Message Board
Latest News:
Trump administration ready to let Cobell program run out of funds (5/24)
Northwest tribes slam Trump's budget for cuts to Indian programs (5/24)
Cheyenne River Sioux Tribe finds one bright spot in Trump's budget (5/24)
Pascua Yaqui Tribe reports jury conviction of non-Indian offender (5/24)
YES! Magazine: Native birthing center maintains tribal traditions (5/24)
Peter d'Errico: Founding Fathers conspired to take land from tribes (5/24)
Eastern Cherokee chief questions fairness of impeachment hearing (5/24)
Another guilty plea in theft of gaming funds from Winnebago Tribe (5/24)
Tribes clear legislative hurdle in bid for new casino in Connecticut (5/24)
President Trump confirms Indian Country's worst fears with budget (5/23)
Office of Special Trustee pitches lower budget as 'taxpayer' savings (5/23)
Steven Newcomb: Monuments to white supremacy harm our people (5/23)
Two more spills of oil from Dakota Access Pipeline in North Dakota (5/23)
Native woman in skirt and sandals wins ultramarathon in Mexico (5/23)
Brothers from Huichol Tribe murdered as drug war rages in Mexico (5/23)
Iowa Tribe misses deadline again to launch internet poker project (5/23)
Mississippi Choctaw citizens request vote on $25M casino project (5/23)
Aquinnah Wampanoag Tribe must wait to restart work on casino (5/23)
Documents show few meetings between Secretary Zinke and tribes (5/22)
Landowners on 2 reservations in Nebraska receive buy-back offers (5/22)
Human Rights Complaint: 'We are only letting the white people in' (5/22)
Mark Trahant: Funds for Indian health in danger under Republicans (5/22)
Cronkite News: Navajo Nation school works hard to teach language (5/22)
Harlan McKosato: DNA tests can't reveal your unique tribal history (5/22)
Gyasi Ross: Fired FBI director made sure Peltier remained in prison (5/22)
Tiffany Midge: A response to winning the cultural appropriation prize (5/22)
André Cramblit: Treasure your aunties and uncles for their histories (5/22)
Treaty tribes celebrate after court refuses to rehear salmon dispute (5/22)
Eastern Cherokee leaders open impeachment hearing against chief (5/22)
Top Interior pick contradicts Trump on 'race' and Indian programs (5/19)
Arne Vainio: Expressing gratitude for the people we have around us (5/19)
Lawmakers dug deep to help North Dakota with #NoDAPL response (5/19)
Quapaw Tribe secures EPA grant for cleanup of contaminated lands (5/19)
Steven Newcomb: The racist and toxic roots of federal Indian policy (5/19)
Indian Country braces for worst with Trump's planned budget cuts (5/18)
Bipartisan task force announced to look into Indian Health Service (5/18)
Lawmakers push to renew Special Diabetes Program for Indians (5/18)
Albert Bender: Police slaughter of Native people rages unabated (5/18)
Steve Russell: There's a downside to impeaching Donald Trump (5/18)
Flandreau Santee Sioux Tribe cannabis consultant goes on trial (5/18)
Lower Brule Sioux Tribe repays money to address federal audit (5/18)
House passes bill to extend federal recognition to Virginia tribes (5/18)
more headlines...

Home | Arts & Entertainment | Business | Canada | Cobell Lawsuit | Education | Environment | Federal Recognition | Federal Register | Forum | Health | Humor | Indian Gaming | Indian Trust | Jack Abramoff Scandal | Jobs & Notices | Law | National | News | Opinion | Politics | Sports | Technology | World

Indianz.Com Terms of Service | Indianz.Com Privacy Policy
About Indianz.Com | Advertise on Indianz.Com

Indianz.Com is a product of Noble Savage Media, LLC and Ho-Chunk, Inc.