Business as usual in the big shitty - Los Angeles

| No Comments

Let's see... You hire a computer security company to find out if you have security issues, they find out that you do and that they are pretty egregious. What do you do? If you are Los Angeles, this - from Info Security Magazine:

Los Angeles Utility Accused of Cybersecurity Coverup
The Los Angeles Department of Water and Power has been accused of deliberately keeping widespread gaps in its cybersecurity a secret from regulators in a large-scale coverup involving the city's mayor.

The allegations were made by Ardent Cyber Solutions LLC, a company hired by the Department of Water and Power (DWP) in April 2019 to perform cybersecurity work.

In a 10-page claim filed against the city earlier this year, Ardent states that it uncovered an "extremely high number of unpatched vulnerabilities" in the company's "corporate IT network."

Please note here: An unpatched vulnerability is a situation where the IT Vendor has become aware of a security issue either through their own testing or through a customer complaint. They have located the issue and developed a repair for the issue and have notified all of their other customers so that they can update their own systems. Doing this requires some level of awareness of the customer's (City of L.A. in this case) IT staff and a bit of proactive accountability on their part.

According to Ardent, DWP board president Mel Levine and DWP’s senior executives were informed of the security issues by email on August 12, 2019. But rather than address the issues, Levine, the DWP, and city officials made “false statements and failed to disclose material facts” in a bid to cover them up.

In the claim, Ardent states that city officials and DWP staff "acted to conceal these facts from federal and state regulators, bond rating agencies, purchasers of municipal securities issued by the LADWP and the public at large."

It is further alleged that Los Angeles mayor Eric Garcetti personally ordered the cancellation of Ardent's DWP contract on August 12, 2019, as a “retaliatory measure” after the company alerted officials to the utility's cybersecurity problems.

And this is not the first time with the Department of Water and Power:

The DWP headquarters were raided by the FBI in August last year as part of a probe into the city's handling of litigation that sprung from the bungled rollout of a new DWP billing system. No one was arrested or charged in connection with the raid.

No accountability, unelected bureaucrats in charge of the administration, culture of corruption. Sounds like a wonderful place to work... Tip of the hat to Computer Security guru Bruce Schneier for the link.

Leave a comment

April 2020

Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30    

Environment and Climate
Cliff Mass Weather Blog
Climate Depot
Ice Age Now
Jennifer Marohasy
Solar Cycle 24
Space Weather
Watts Up With That?

Science and Medicine
Junk Science
Life in the Fast Lane
Luboš Motl
Next Big Future

Geek Stuff
Ars Technica
Boing Boing
Don Lancaster's Guru's Lair
Evil Mad Scientist Laboratories
Hack a Day
Kevin Kelly - Cool Tools
Slashdot: News for nerds
The Register
The Daily WTF

The Argyle Sweater
Chip Bok
Broadside Cartoons
Day by Day
Medium Large
Michael Ramirez
Prickly City
User Friendly
What The Duck

Awkward Family Photos
Cake Wrecks
Not Always Right
Sober in a Nightclub
You Drive What?

Business and Economics
The Austrian Economists
Carpe Diem
Coyote Blog

Photography and Art
Digital Photography Review
James Gurney
Joe McNally's Blog
The Online Photographer

A Western Heart
American Digest
The AnarchAngel
Anti-Idiotarian Rottweiler
Babalu Blog
Belmont Club
Bayou Renaissance Man
Classical Values
Cold Fury
David Limbaugh
Defense Technology
Doug Ross @ Journal
Grouchy Old Cripple
Irons in the Fire
James Lileks
Lowering the Bar
Maggie's Farm
Marginal Revolution
Michael J. Totten
Mostly Cajun
Power Line
Questions and Observations
Rachel Lucas
Roger L. Simon
Sense of Events
Sound Politics
The Strata-Sphere
The Smallest Minority
The Volokh Conspiracy
Tim Blair
Weasel Zippers

Gone but not Forgotten...
A Coyote at the Dog Show
Bad Eagle
Steven DenBeste
democrats give conservatives indigestion
Cox and Forkum
The Diplomad
Priorities & Frivolities
Gut Rumbles
Mean Mr. Mustard 2.0
Neptunus Lex
Other Side of Kim
Ramblings' Journal
Sgt. Stryker
shining full plate and a good broadsword
A Physicist's Perspective
The Daily Demarche
Wayne's Online Newsletter

About this Entry

This page contains a single entry by DaveH published on March 12, 2020 8:14 AM.

And another day in paradise was the previous entry in this blog.

How's Allah treating you these days - Wuhan Virus is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Monthly Archives


OpenID accepted here Learn more about OpenID
Powered by Movable Type 5.2.9