By Patrick Thibodeau and Jaikumar Vijayan
March 13, 2009
After being arrested on bribery charges yesterday, the District of
Columbia's top information security official is being held without bail,
partly because of uncertainty about whether he still has the ability to
access the district's IT systems.
That's just one of many potential security issues facing D.C. government
officials after the FBI raided the district's IT offices and arrested
Yusuf Acar, its acting chief security officer, and a second man in
connection with an alleged bribery scheme.
For instance, Acar had access to personnel data and other confidential
information in the district's systems as part of his job. Court
documents submitted by the FBI claim that several other district
employees were also involved in the bribery scheme. Security analysts
warn that Acar and his alleged accomplices could have created backdoors
into systems. And since the alleged scheme included misdoings on a
purchase of security software, there may be questions about the quality
of the district's security tools.
>From an IT security standpoint, municipal officials in Washington have a
nightmare on their hands, said Johannes Ullrich, chief technology
officer at the SANS Institute's Internet Storm Center in Bethesda, Md.
Best Selling Security Books and More!