Just two days after the department of homeland security officially opened its doors, government- and business-security managers scored a victory of sorts with a successful public-private effort to combat a potential threat to more than 1.5 million E-mail systems around the world. The work served as a dress rehearsal for the kind of cyberattacks the government expects will increase as geopolitical tensions rise and a war with Iraq looms. When the Sendmail vulnerability and the patches for it were simultaneously made public last week, key commercial organizations such as banks and utilities, as well as government agencies, were prepared to deal with the problem, having been alerted to it in late February by officials at the government's Critical Information Sharing and Analysis Centers. Issuing the patches was the culmination of work that began in December, when security software vendor Internet Security Systems Inc. warned the National Infrastructure Protection Center, now a part of Homeland Security, of the vulnerability in the Sendmail Mail Transfer Agent, which handles half to three-quarters of all Internet E-mail traffic. If exploited, the vulnerability could disrupt E-mail systems, emergency services, telecom networks, and other online systems worldwide, ISS warned.
展开▼
机译:国土安全部正式开放两天后,政府和企业安全经理通过成功的公私合力抗击全球超过150万个电子邮件系统的潜在威胁取得了多项胜利。这项工作是对政府预计将随着地缘政治紧张局势加剧以及与伊拉克战争临近的网络攻击类型进行的彩排。上周同时发布了Sendmail漏洞及其补丁时,银行和公用事业以及政府机构等主要商业组织已准备好处理此问题,并于2月下旬收到官员的警告。政府的关键信息共享和分析中心。发行补丁是12月开始的工作的高潮,当时安全软件供应商Internet Security Systems Inc.向国家基础设施保护中心(现为国土安全部的一部分)发出警告,指出Sendmail邮件传输代理中的漏洞,该漏洞可处理一半所有Internet电子邮件流量的四分之三。 ISS警告说,如果利用此漏洞,该漏洞可能会破坏电子邮件系统,紧急服务,电信网络和全球其他在线系统。
展开▼
