Russia

Report: HP Sold Out the Pentagon for Russian Business Opportunities

JM Ashby
Written by JM Ashby

According to an exclusive report from Reuters, Hewlett Packard's enterprise arm allowed the Russian government to review the source code for the Pentagon's most prolific cybersecurity software so they could sell it to the Russians.

The software, called ArcSight, is used by every branch of the U.S. military and, according to a Pentagon spokesperson who spoke to Reuters, they didn't know the Russians were allowed to review the system's source code.

The Russian review of ArcSight’s source code, the closely guarded internal instructions of the software, was part of HPE’s effort to win the certification required to sell the product to Russia’s public sector, according to the regulatory records seen by Reuters and confirmed by a company spokeswoman.

Six former U.S. intelligence officials, as well as former ArcSight employees and independent security experts, said the source code review could help Moscow discover weaknesses in the software, potentially helping attackers to blind the U.S. military to a cyber attack.

While some former officials who spoke to Reuters warned that this could help the Russians penetrate American networks without being noticed, other sources and company officials say there's nothing to worry about.

An HP spokeswoman told Reuters their products "are in no way compromised,” but I personally don't find that to be very reassuring. The defection of Edward Snowden already made our defense networks vulnerable and HP apparently allowed the Kremlin to peer at the source code of the software behind those networks.

I believe we're still grossly underestimating our vulnerabilities across the entire public and private sector. I'm sure executives at Equifax would have said their products are in no way compromised just six months ago. I understand that's quite a bit different, but we usually only learn about these things after it's too late.

In this case, the investigative journalists at Reuters seem to have alerted the Pentagon to a potential area of vulnerability they didn't know about. Hopefully it won't be too late this time.

  • Draxiar

    I think I’ll ask a neighbor who’s a known thief to check my locks and make sure they’re up to par.

  • doodlebugrusty

    Which is why contracting out everything like the republicans keep doing, is a ROTTON idea

  • Ellen Kuhlmann

    government has long been too reliant on private contractors to provide crucial services. This is one example of how that can backfire.

  • W-T-F???

    Why wasn’t this software proprietary??

    • Christopher Foxx

      Or classified as a military secret?

  • ninjaf

    Ummm…how in the hell did HP ever think this was a good idea?

    • Username1016

      They weren’t thinking in terms of “good idea.” They were thinking in terms of “business opportunity” and “profit.” Corporations are mindless money-gobbling machines.

      • ninjaf

        True, but the people who comprise them are not supposed to be.

        • NidiaCGreathouse

          Google is paying 97$ per hour,with weekly payouts.You can also avail this.
          On tuesday I got a great new Land Rover Range Rover from having earned $11752 this last four weeks..with-out any doubt it’s the most-comfortable job I have ever done .. It sounds unbelievable but you wont forgive yourself if you don’t check it
          !js279d:
          ➽➽
          ➽➽;➽➽ http://GoogleLegitimateDirectJobsFromHomeJobs/computer/jobs ★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫★★✫★✫:::::!js279l..,….

        • Christopher Foxx

          Nonsense. The people running corporations totally believe that is exactly what they’re supposed to be. They focus solely on the quarterly earnings and stock price and give notice to anything of real social value only because it helps with those two things.