668

A U.S. Navy chief who wanted the internet so she and other enlisted officers could scroll social media, check sports scores and watch movies while deployed had an unauthorized Starlink satellite dish installed on a warship and lied to her commanding officer to keep it secret, according to investigators.

Internet access is restricted while a ship is underway to maintain bandwidth for military operations and to protect against cybersecurity threats.

The Navy quietly relieved Grisel Marrero, a command senior chief of the littoral combat ship USS Manchester, in August or September 2023, and released information on parts of the investigation this week.

you are viewing a single comment's thread
view the rest of the comments
[-] NuXCOM_90Percent@lemmy.zip 6 points 2 months ago

Itself? Not really.

If a ship is close enough to pick up an SSID they are close enough for any number of other methods. And starlink is theoretically trusted by the us government.

But if they were actually locked down for a real mission (not the stuff you do to make people feel important) then we could have seen the same kinds of telegram leaks Russian has near constantly.

[-] ABCDE@lemmy.world 4 points 2 months ago

The GPS is recording where they are, which can report to things like fitness applications. These are not so secure and can identify where they are, have been, and likely will go next.

[-] NuXCOM_90Percent@lemmy.zip 4 points 2 months ago* (last edited 2 months ago)

And if there is not immense amounts of "do not have a fucking fitbit" levels of warnings and policies, that is a problem for the US Navy itself. Because a lot of those will also cache data and send the last N days once they get back to shore.

Again, unless they were ACTUALLY doing sensitive stuff (rather than just "sensitive by default" to protect Leadership(TM) from having to think and make decisions) then we are looking at the same problem the russians have in Ukraine.

Otherwise? It is a policy violation, not a security violation, in and of itself. What people then share on social media is on them.


And a friendly reminder: Policy is made to minimize the risk of a security issue and you should follow it (if only because you are paid to). But it is VERY important to understand what you are actually protecting yourself from so that you understand if policy is even doing anything. Otherwise you get complete insanity as more and more bureaucrats and Leaders(TM) add bullshit so they can get a bonus for being "security minded".

this post was submitted on 11 Sep 2024
668 points (98.3% liked)

Technology

59623 readers
1396 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS