Clinton Email Fail: Worst Government Security Flubs - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
IT Life
News
3/17/2015
05:05 PM
Joe Stanganelli
Joe Stanganelli
Slideshows
Connect Directly
Twitter
LinkedIn
RSS
E-Mail

Clinton Email Fail: Worst Government Security Flubs

Hillary Clinton isn't the first politician to have committed a data compliance faux pas when it comes to email. CIOs, compliance departments, and privacy officers would do well to learn from the mistakes of those who screwed up before her.
2 of 8

The Petraeus Scandal
Paula Broadwell, biographer of then Director of the CIA David Petraeus, was found to be having an affair with her subject, and Petraeus had reportedly leaked classified information to Broadwell. The affair came to light during an FBI cyberstalking investigation. Petraeus family friend Jill Kelley was the subject of a cyberstalking campaign that was allegedly conducted by Broadwell. 
Of big help to the FBI's investigation was the fact that Broadwell shared a Gmail account with Petraeus. The two used the 'Drafts' folder of the account to communicate -- deleting and replacing each message. Gmail metadata eventually led the FBI to Petraeus.
The scandal stalled -- if not ruined -- multiple careers. Broadwell lost her security clearance, and Petraeus was forced to resign. Petraeus is also facing two years of probation and a $40,000 fine subject to a plea bargain with the Department of Justice (DOJ) for unauthorized removal and retention of classified material.
(Image: US Government via Wikimedia Commons)

The Petraeus Scandal

Paula Broadwell, biographer of then Director of the CIA David Petraeus, was found to be having an affair with her subject, and Petraeus had reportedly leaked classified information to Broadwell. The affair came to light during an FBI cyberstalking investigation. Petraeus family friend Jill Kelley was the subject of a cyberstalking campaign that was allegedly conducted by Broadwell. Of big help to the FBI's investigation was the fact that Broadwell shared a Gmail account with Petraeus. The two used the "Drafts" folder of the account to communicate -- deleting and replacing each message. Gmail metadata eventually led the FBI to Petraeus.

The scandal stalled -- if not ruined -- multiple careers. Broadwell lost her security clearance, and Petraeus was forced to resign. Petraeus is also facing two years of probation and a $40,000 fine subject to a plea bargain with the Department of Justice (DOJ) for unauthorized removal and retention of classified material.

(Image: US Government via Wikimedia Commons)

2 of 8
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
impactnow
50%
50%
impactnow,
User Rank: Author
3/31/2015 | 1:32:08 PM
Re: No Excuses
Does the blame line with Mrs. Clinton or does it live with the technology infrastructure that the government has given their employees and how they educate them on using it ?
impactnow
50%
50%
impactnow,
User Rank: Author
3/24/2015 | 1:23:20 PM
Security for Gov't officials tech infrastructure

The discussion raises another issue should someone who has a high ranking government official have a private server at their home or should all their communications be secured? Personally I think if you are at the level of secretary of state the government should be implementing an IT infrastructure at your home and other primary residences that is highly secure. After all it's only our national security!

impactnow
50%
50%
impactnow,
User Rank: Author
3/23/2015 | 1:24:35 PM
Why

For all companies and governments the issue has to be why is someone using a personal account? If the reason is that they don't want accountability for their email communications then that is a specific issue related to their ethics. If the issue is that the email account from the government or company does not enable effective communications then there is another issue. In the early days of corporate email there were so many limitations we often use personal accounts for speed and to be able to send large documents. If this was the case then there is an issue that should be addressed with government technology effectiveness. If there was another issue then it's an issue with national security that should be addressed.

Thomas Claburn
50%
50%
Thomas Claburn,
User Rank: Author
3/18/2015 | 6:40:39 PM
Re: Mistake?
>"What IT should do to fight corruption in Washington DC?"

Require a single national login and password, so everyone can read everything.
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

News
Remote Work Tops SF, NYC for Most High-Paying Job Openings
Jessica Davis, Senior Editor, Enterprise Apps,  7/20/2021
Slideshows
Blockchain Gets Real Across Industries
Lisa Morgan, Freelance Writer,  7/22/2021
Commentary
Seeking a Competitive Edge vs. Chasing Savings in the Cloud
Joao-Pierre S. Ruth, Senior Writer,  7/19/2021
White Papers
Register for InformationWeek Newsletters
2021 State of ITOps and SecOps Report
2021 State of ITOps and SecOps Report
This new report from InformationWeek explores what we've learned over the past year, critical trends around ITOps and SecOps, and where leaders are focusing their time and efforts to support a growing digital economy. Download it today!
Video
Current Issue
Monitoring Critical Cloud Workloads Report
In this report, our experts will discuss how to advance your ability to monitor critical workloads as they move about the various cloud platforms in your company.
Slideshows
Flash Poll