Roll Call: Latest News on Capitol Hill, Congress, Politics and Elections
October 8, 2015

Pentagon Weather Satellites Raise Hacking Vulnerability, Watchdog Finds

No one has ever done a security assessment of a Defense Department weather satellite program used by the Pentagon to monitor potential battlefield conditions, according to an inspector general report. There might not even ever be a security assessment to make sure it meets DOD’s standards, in fact. And because that system is interwoven with another program by the National Oceanographic and Atmospheric Administration, it makes that one more vulnerable to hacking.

The report was released by the Commerce Department’s IG after a Freedom of Information Act request by Greenwire. The close links between the U.S. Air Force’s Defense Meteorological Satellite Program and a system of NOAA weather satellites puts both at risk, the report found. They are interwoven “to the point where they are virtually one system. Specifically, there is no physical or logical separation between the systems (i.e., the systems operate on the same network and data can flow between the systems); they share support personnel, and they share some of the same support services and IT security controls.

“This interweaving means that deficiencies in one system’s security posture will drastically affect the other system’s security,” the report states. “Unfortunately, because USAF and NOAA disputed for several years (from 2006 to 2010) who was responsible for DMSP’s security, neither organization conducted security assessments of DMSP. Ultimately, USAF and NOAA determined in 2010 that USAF was responsible for DMSP. However, USAF has yet to fulfill its responsibilities by determining DMSP’s security posture and ensuring that the system meets the Department’s security requirements.”

What little security assessment has been done hasn’t been promising, the IG report notes. When the NOAA satellites were being assessed in fiscal year 2013, they inadvertently scanned parts of the Defense system and found vulnerabilities like weak passwords or operating systems that had well-documented holes for which fixes had been available for a decade or more.

And the systems won’t be separated for years more, at best, per the report. And the Air Force isn’t going to do any security assessment for a while.

“Further, USAF does not plan to conduct an assessment of DMSP’s security posture until it completes a technology refresh in 2016 (i.e., replace DMSP’s legacy hardware and software components),” the report states “However, there is doubt that the refresh will occur because of the USAF’s funding constraints.”

If it sounds like some of this information is sensitive, Greenwire reports at the end of its story:

The IG’s office did not initially release the report — and instead referred the public to the FOIA process — because of concerns from NOAA officials that it contained classified information about the Defense Meteorological Satellite Program. Once the Air Force had confirmed that all the report’s information was unclassified, the IG released it in full.

Comments (18)

  1. Anonymous

    July 7, 2015
    9:10 a.m.

    Howdy! I could have sworn I’ve been to this blog before but after reading through some of the post I realized it’s new to me. Anyhow, I’m definitely glad I found it and I’ll be book-marking and checking back often!

  2. Anonymous

    July 12, 2015
    2:57 p.m.

    My spouse and i felt now excited that John managed to finish up his investigation from the ideas he was given using your blog. It’s not at all simplistic just to possibly be giving freely guidelines others may have been making money from. So we figure out we have the blog owner to give thanks to for this. These explanations you have made, the easy blog navigation, the relationships you will help to foster – it is most unbelievable, and it’s really helping our son in addition to us believe that this concept is enjoyable, which is certainly incredibly essential. Many thanks for the whole thing!

  3. Anonymous

    July 18, 2015
    8:45 a.m.

    Hi there! I just wish to give an enormous thumbs up for the great data you might have here on this post. I might be coming back to your blog for more soon.

  4. Anonymous

    July 21, 2015
    4:50 a.m.

    Aw, this was a very nice post. In idea I wish to put in writing like this additionally – taking time and actual effort to make a very good article… but what can I say… I procrastinate alot and under no circumstances appear to get something done.

  5. Anonymous

    July 24, 2015
    10:01 a.m.

    This web site is mostly a walk-through for the entire information you wished about this and didn’t know who to ask. Glimpse right here, and you’ll undoubtedly discover it.

  6. Anonymous

    July 24, 2015
    9:26 p.m.

    I went over this website and I think you have a lot of excellent info , saved to favorites (:.

  7. Anonymous

    July 28, 2015
    8:47 a.m.

    Very well written information. It will be valuable to everyone who usess it, including me. Keep doing what you are doing – looking forward to more posts.

  8. Anonymous

    July 30, 2015
    2:12 p.m.

    Hello. Great job. I did not anticipate this. This is a fantastic story. Thanks!

  9. Anonymous

    July 31, 2015
    8:52 a.m.

    Hi, Neat post. There is an issue together with your web site in web explorer, would check this… IE still is the marketplace chief and a large part of other people will leave out your great writing due to this problem.

  10. Google

    Aug. 1, 2015
    9:49 p.m.

    Below you will find the link to some sites that we believe you’ll want to visit.

  11. Anonymous

    Aug. 2, 2015
    2:58 p.m.

    Aw, this was a very nice post. In idea I would like to put in writing like this additionally – taking time and precise effort to make a very good article… but what can I say… I procrastinate alot and certainly not appear to get something done.

  12. Anonymous

    Aug. 6, 2015
    5:28 a.m.

    You made some first rate points there. I seemed on the internet for the problem and found most individuals will associate with along with your website.

  13. Anonymous

    Aug. 7, 2015
    5:39 a.m.

    I dugg some of you post as I cerebrated they were extremely helpful very useful

  14. Anonymous

    Aug. 12, 2015
    6:04 p.m.

    Thanks for another great post. The place else may just anybody get that kind of info in such a perfect manner of writing? I’ve a presentation subsequent week, and I’m on the search for such info.

  15. lesbians squirting

    Aug. 15, 2015
    7:11 p.m.

    Thanks so much for the post. Really Cool.

  16. Anonymous

    Sept. 2, 2015
    3:19 p.m.

    SZz0fZ This particular blog is really entertaining additionally factual. I have found a lot of useful tips out of this source. I ad love to go back again soon. Thanks a bunch!

  17. Anonymous

    Sept. 3, 2015
    10:44 a.m.

    M41eSx Really wonderful information can be found on web blog.

  18. desene animate

    Sept. 9, 2015
    10:51 p.m.

    Really enjoyed this blog.Much thanks again. Great.

Sign In

Forgot password?



Receive daily coverage of the people, politics and personality of Capitol Hill.

Subscription | Free Trial

Logging you in. One moment, please...