If you've missed it, the IG report on the email scandal shows that the State IT staff turned off their OWN security filters temporarily b/c the software was seeing emails from the Clinton server as spam and blocking them. Rather than having Clinton use a government system their solution was to turn off their own protections.
That means the Department of State system was exposed to all sorts of attacks, esp. phishing attacks. Given that I doubt most DoS employees knew it was off, that means they would be more likely to click on an email b/c they'd be used to such things being blocked and think it was legit.
We also KNOW that Russian presence in the system was detected in 2014 and was there for a while. This security was turned off in 2010. It's not conclusive but it's entirely possible the Russians got in b/c of that open window and once someone clicked on a phishing email they were able to get their virus up and running behind the system firewalls.
If nothing else, shouldn't those who approved that security lapse be in irons? We KNOW they intentionally turned off security and exposed the DoS system to potential hacking, KNOWING that foreign governments and hackers are CONSTANTLY, every day trying to hack those systems.
Those people would be the start, right? Of course once you arrest them for breach of their obligations to secure the system, you ask them who ordered them to do those things.... but lets at least start rounding up the various trigger men involved.
Bookmarks