FBI investigating missing State Department laptop
Computerworld - The U.S. State Department said yesterday that the FBI is leading an investigation into the disappearance two months ago of a State Department laptop computer that might have contained classified information. A department spokeswoman could not confirm whether any sensitive data that might have been stored on the missing laptop was encrypted.
According to the spokeswoman, State Department regulations prohibit processing classified information on computers that are not designed to handle sensitive data. But she could not confirm that the policies cover the encryption of specific files.
Last month, a laptop containing sensitive data about Northern Ireland was stolen from an agent of Britain's MI5 internal security bureau while he was buying a train ticket at London's Paddington station. The machine was never recovered, but the information it contained was understood to be heavily encrypted and believed to be secure.
In the U.S. case, the laptop was reported missing from the State Department's Bureau of Intelligence and Research. The bureau, which handles highly classified reports, was criticized last year by the department's inspector general for lax handling of "sensitive compartmented information" that the laptop reportedly held.
In response to this and other recent security breaches at the department, Secretary of State Madeleine Albright asked the Assistant Secretary for Diplomatic Security (DS), David Carpenter, to conduct a thorough review of security at the department. Carpenter has put together a team of senior security experts from various government agencies. The review, which began in March, is expected to be completed shortly.
"The safeguarding of sensitive information is the personal responsibility of every employee in the bureau," said State Department spokesman James Rubin in a statement on Monday. "It is crucially important to U.S. national security that our employees take this responsibility and take the necessary steps to protect the information."
The spokeswoman added that the DS information security staff is currently conducting a training and awareness program throughout the State Department. She noted that each office in the department assigns a staff member to serve as a unit security officer to ensure security policies are observed.
"We are committed to improving our security," said the spokeswoman. "As there is a possibility that classified information may have been compromised, this matter is now the subject of a joint FBI and DS investigation."
"The missing laptop is the latest in a long string of security failures at the State Department," said Rep. Benjamin Gilman (R-N.Y.), who heads the House International Relations Committee, in a statement on Monday. "It is obvious that the department lacks



- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Overcome Top 7 Admin Challenges of Active Directory
- As Active Directory's role in the enterprise has drastically increased, so has the need to secure the data. Gain insight on creating repeatable,...
- Insiders Can Ruin Your Company. Take Action.
- Did you know that 80 percent of threats to an organization come from the inside? The threat from insiders is often overlooked in...
- Top Solutions and Tools to Prevent Devastating Malware
- Custom malware frequently goes undetected. According to Forrester Research, the best way to reduce risk of breach is to deploy file integrity monitoring...
- Streamline Compliance and Increase ROI
- Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will...
- X-Ray of the PCI Process-4 Proactive Steps
- This white paper from Forrester Research Inc., helps break PCI into understandable components. Security and risk professionals will gain knowledge and insight into...
- Live Webcast
North Pole to South Seas: Overcoming the Pitfalls of remote Performance - In today's always-on world, connectivity is a business requirement. You need the tools that allow you to operate as if you were on...
- Live Webcast
Playing Defense: Staying on Top of Your Disaster Recovery Game - When it comes to disaster recovery, rapidly growing data volumes, distributed computing models, and new technologies all combine to present an ever-changing playing...
- Live Webcast
Banish Poor Application Performance: Eliminate Business Disruptions, Increase End User Productivity - End User Experience, 30-Min Webinar
Wed. Feb. 22nd ~ 11 AM ET
Are you ready to gain the proactive ability to rapidly respond... - Optimizing Networks for the Cloud
- Join guest speaker, Rohit Mehra, IDC Director of Enterprise Communications Infrastructure, to explore current trends, discuss best practices for optimizing Data Center and...
- Apps QuickStart Series Part 2: Designing and Deploying SQL Server on VMware vSphere
- Download this webcast to learn about the design considerations for virtualizing SQL workloads, performance and scalability information and high-availability options, as well as...
- Apps QuickStart Series Part 1: Designing and Deploying Exchange 2010 on VMware vSphere
- Download this webcast to learn the virtual hardware design considerations for Exchange 2010, deployment using the building block approach, options for high-availability and...
- Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware
- Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn...
- Virtualize Business-Critical Applications with Confidence
- Virtualizing business-critical applications has become a key focus for organizations as they move along their virtualization journey. With the launch of VMware vSphere®...