Thursday, May 05, 2011
USPS security breach reported, would not affect ordinary customers or NCOA users
A United States Postal Service subsite “ribs.usps.gov” was apparently hacked before early April 2007 and infected with scripting code associated with the “Blackhole Exploit Kit”, which could take a visitor to an embedded site distributing malware or spyware. The USPS service affected was the Rapid Information Bulletin Board service. It’s unlikely that any users were really “harmed”.
There is a detailed technical explanation at ZScaler, “leader in Cloud Security”, (website url) here.
I also discussed this story (giving other bibliographic references) on my “Internet Safety” blog today in conjunction of reports of malware purporting to offer contraband pictures of Osama bin Laden.
The story is significant because use of the USPS “national change of address” system in conjunction with products like Move Forward could be used to design a national strategy to combat identity impersonation, as I have explained on this blog before (esp. Sept. 25, 2006). But such a system would reside largely on IBM-style mainframes, kept off the public Internet and much harder to compromise (with typical mainframe security like RACF or Top Secret, etc.) Of course, people are still raising similar questions today about other systems not normally accessible to the Internet, such as with the power grid.