The U.S. Army is denying that its systems were compromised by a recently discovered buffer overflow vulnerability in a component of Microsoft Windows 2000 used to manage the Web Distributed Authoring and Versioning protocol. However, Pentagon sources acknowledged that an investigation into the compromise of a “military server” is now under way. “To the best of our knowledge, an Army system was not attacked,” said Col. Ted Dmuchowski, director of information assurance at the Army’s Network Technology Enterprise Command. “According to our records, the military sites that were attacked did not belong to the Army.” Even so, “we do consider operating and defending the Army’s computer networks to be no different than managing and defending the physical battlefield,” Dmuchowski said. “We are aware of the vulnerability in the IIS 5.0 server software, and we have taken measures to push the appropriate patch down to all Army networks.” Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.