Do you feel safer than you did 6 years ago?

SERIOUSLY?

Because you totally shouldn't....

I don't make a habit of reprinting entire NYT articles, but I had to make a VERY special exception for this one.

Just one personal editorial comment: This is SO consistent with my three year tenure in Emergency Preparedness...

October 4, 2007
Text
An E-Mail Chain Reaction
On Wednesday, an innocuous e-mail request transformed into a flood of more than 2.2 million messages nationwide. The first e-mail, with addresses redacted:

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Alex Greene"
To: "NICCReports"

Hi,
Effective October 15th I am switching jobs and would like to receive the DHS daily report at my new e-mail address;
xxxxxxxxxx
Thanks,
Alex

Alex Greene
Manager - International Operations, Roxboro
GKN Freight Services Inc.


•

Excerpts from the e-mails that followed:

Subject: RE: DHS_Daily_Report_2007-10-02
From: "State of Texas SOC"
To: "Alex Greene
Cc: "Ryan-Bunger, Gisela

Mr. Greene,
We do not maintain the DHS_Daily_Report 2007. You will have to contact NICC to update your email address.
SOC/Stephanie


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Johnson, Dawn"
To: "State of Texas SOC
Cc: "Ryan-Bunger, Gisela

Please for goodness sake, no one else reply to all, some of us actually have work to do


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Wight, Collins"
To: "Caldwell, Dwayne"
Cc: "Ryan-Bunger, Gisela



Collins Wight, Jr.
LDRPS System Administrator
Corporate Contingency Planning
National City Corporation


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Koszalka, Sue (DPH)"
To: "State of Texas SOC
Cc: "Ryan-Bunger, Gisela

Hi,
Don’t know if anyone realizes it but these e-mails are going to the entire distribution list.

Sue Koszalka
Massachusetts Department of Public Health
Bureau of Environmental Health
Coordinated Environmental Response Program


•

Subject: RE: DHS_Daily_Report_2007-10-0

It's good here in DC. Just a bit muggy

Bill Miller
Emergency Management Information Officer
Office of Emergency Programs
Department of the Treasury


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Caldwell, Dwayne"
To: "Koszalka, Sue
Cc: "Ryan-Bunger, Gisela

Sue,
I don’t think everyone realizes that yet, but what a nice way for all of us to get to know one another! J
Hope all is well in Boston.

Dwayne Caldwell, REHS, PEM
Environmental Health Supervisor
Vanderburgh Co. Health Dept.
Evansville, IN 47713


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Steve Siegfried"
To: "Caldwell, Dwayne"
Cc: "Ryan-Bunger, Gisela

Since we are introducing ourselves, I'm Steve and I like long walks on the beach and a nice chardonnay with my roasted duck. LOL.

Steve Siegfried
WING Investigator
HIDTA Investigator


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Flowers, Monique"
To: "Steve Siegfried"
Cc: "Ryan-Bunger, Gisela

I’m a Sagittarius and am from York, PA…

Monique Flowers
Harley-Davidson Security
1st Shift Asst. Supervisor


•

Subject: RE: DHS_Daily_Report_2007-10-03
From: "Lee, Margaret"
To: "Lee, Jeanene M"

I am from the great state of LOUISIANA.

Margaret Lee
Infrastructure Protection Grant Specialist
Governors Office of Homeland Security & Emergency Preparedness, Preparedness Section


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Smith, Michael B. Mr OASA\(I&E\)-Plexus Contractor"
To: "Wight, Collins"
Cc: "Ryan-Bunger, Gisela

Dear Mr. Alex Greene (the guy who started this mess),
May the fleas of a thousand camels infest you armpits and may a yak in heat make love to your shin.


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "JHF Security Command"
To: "David A. Africano"
Cc: "Ryan-Bunger, Gisela

STOP.. this is the Command Center and i keep getting your messages.
Rea.


•

Subject: Re: DHS_Daily_Report_2007-10-03

Well as long as we have a free for all going here, I'm job hunting. Anybody have anything open out there?

Mary Brown, DVM, MPH
(LtCol USAFR)


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Strohman GS11 Jeffrey T"
To: "Tripathy, Rasika"
Cc: "Ryan-Bunger, Gisela

REMOVE
REMOVE
REMOVE
REMOVE
REMOVE
REMOVE
REMOVE
REMOVE

JEFFREY T. STROHMAN
AT Training Program Manager
ISS, Camp Lejeune, NC 28542


•

Subject: URGENT REQUEST FROM DOD RE: DHS_Daily_Report_2007-10-02
From: "Kinder, Mike"
To: "Taraba, Joseph"
Cc: "Ryan-Bunger, Gisela

This is your COMBATING TERRORISM OFFICE for DOD asking you to kindly stop now please. We actually have work to do.
Not to be a buzz kill but this is NOT a networking tool. I will make a list of these responses to have all of you removed if it continues.
Thank you.

Michael Kinder
Infrastructure Protection
SETA Support to the TSWG


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Meyers, Charles L CTR OSD POLICY"
To: "Taraba, Joseph"
Cc: "Ryan-Bunger, Gisela

As a representative of the Department of Defense, I am ordering all to cease and desist with the emails! I'm a Sagittarius and it's overcast here in D.C.! :-)

Charlie Meyers
OASD (HD&ASA)


•

Subject: Re: DHS_Daily_Report_2007-10-03
From: "Bynum, Sarah J SPGI CWCS"

Well I am in jordan and this is costing me a fortune. Sent from my blackberry. Best regards. Sarah Bynum -----


•

Subject: RE: DHS_Daily_Report_2007-10-03
From: "Palmer, Joseph H"
To: "King, James M"

Jim,
If you happen to get near Golden, Colorado, stop by our plant for a tour of the world's largest single site brewery and a terrific product line from Coors!
Wonderful fall weather here in Colorado!! This is a better networking opportunity than the ASIS conference in Vegas last week

Joseph H Palmer Jr
Corporate Security Manager
Coors Brewing Company


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Slick, Scott S. BUMED Contractor"
To: "Eric Hamilton"

WOULD EVERYBODY STOP HITTING REPLY TO ALL!

Scott S. Slick, CHS-III
Battelle Memorial Institute
Navy Medicine Office of Homeland Security (N35)


•

From: TechGuy
Subject: Fwd: Please do not use "reply to all" button
Cc: DHS Daily OSIR Distribution List

Are you serious? Is this actually the official response and remedy for this issue?
I have refrained from commenting up till now as to not perpetuate this issue, but this sort of response is unacceptable and just goes to prove why so many lack faith in our government and government agencies.
How about utilize some common measures to ensure that others are not allowed to send to the list. Its actually pretty simple and common place to do.


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Bass, Michael L SFC 94TH RRC"
To: "Chris"
Cc: "Ryan-Bunger, Gisela

Im a Sagitarius from NY. My only fault is that I am partial to V.O. on the rocks as I cut into my rare Porterhouse!

SFC Michael L. Bass
94th RRC
Command Security Manager


•

From: Jonathon Bangler
Subject: Vegas Anyone?
To: DHS Daily OSIR Distribution List

Anyone want to plan a gathering in Vegas?


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "Joseph Key"
To: "Darrel West"
Cc: "Alex Greene"

Does anyone have high level media contacts? This would make a great story for the national news.


•

From: "Alan Steinberg"
To: "'Bob Dart'"
Subject: RE: DHS_Daily_Report_2007-10-02

Bob,
I would expect that the list would be worth something!
What if someone was running for political office had access to the list and just wanted to plug themselves. Perhaps say something like "I'm Alan Steinberg, and I'm running for U.S. Congress." Or even plug their website, by saying "Please visit www.steinbergforcongress.com"
Oh wait... I just did it =D

Alan Steinberg
Candidate, U.S. Congress, TX-22


•

Subject: RE: Unsubscribe!
From: "Arlt, Timothy J."
Cc: DHS Daily OSIR Distribution List

Larry,
I applaud your reaction it was mine as well. I sent a message to the DHS message board stating the following: Very distributing that the so called "security stakeholders" would use this exploder list in this manner! It is obvious that this message from DHS is reaching an audience that has no clue about security nor how to use what relevant information is presented. DHS needs to tighten control and security of these messages!
I apologize for adding an email to your already expanding inbox, but I wanted to convey to you that you are not alone. This event has left a severe distaste and dissatisfaction with many of your peers.

Tim Arlt
Nebraska Public Power District
System Control Manager


•

From: "Bob Dart"
To: DHS Daily OSIR Distribution List
Subject: RE: DHS_Daily_Report_2007-10-02

I like the SANS blog post: "dozens" of e-mail replies. Dozens wouldn't be nearly as funny as the 200-some that you guys have managed to send so far.
And where did all the funny go, anyway? Sure, endless "take me off this list" messages are pretty funny themselves, showing us how clueless so many "security professionals" can be, but they're no match for long, virtual walks on the beach in between scuba diving. Come on, I expect more from you! Don't make me do work!
By the way, anyone know how much money someone can get for a list of 200+ e-mail addresses of government security professionals?


•

Subject: RE: DHS_Daily_Report_2007-10-02
From: "McBride, Donald"
To: "Bob Dart"

Is there going to be a prize for the 300th response?
Maybe a bottle of wine for those with a sense of humor, or a CD on how to configure your email to delete messages for those without.


•

From: "Amir Ferdosi"
To: DHS Daily OSIR Distribution List
Subject: Is this being a joke?

why are so many messages today?

Amir Ferdosi
Sazeman-e Sana'et-e Defa'
Qom, Iran


•

From: Marshall Odom
Subject: Give it a read you may see yourself in here!!!!!
To: Amir Ferdosi

Wow a reply from Iran!!!! Open source really does mean open source!!!!! For those of you that have responded to this email from an official computer with your snazzy little signature at the bottom, especially those that have every piece of contact information listed, including those of you that have disclosed sensitive phone numbers and classified email addresses have knowingly provided this information to people all over the world some of which I am sure are deemed "undesirables'. Folks wise up. This is an open report that anyone with an email address can subscribe to. Although some of you responses have been humorous to say the least (leave poor alex alone) you are opening doors to people that you do not want to. I notice some of you are in jobs that use this list as a way of staying informed although you have no true capacity in the world of infrastructure security and I applaud you for using this tool to stay abreast of all the information provided. But those of you that are in the military or provide services through any official office you should know better than to advertise who you are and who you work for. The best tool that someone can use to gain access to information they should not have is to befriend you and what better way than through some harmless emails. besides now they have all your information. This is trade craft 101 folks. Wise up and don't reply to something just because you can. I know that I now have access to hundreds of IP addresses, email addresses, phone numbers, names of personnel in sensitive positions and locations, I am only a cover story and a fake letterhead away from trolling for intel. James Bond made it look cool but in it's most simple form intelligence gathering can very easily start right here.Not good folks, and don't blame DHS for this, no one forced your hands to type. Besides DHS is not some all knowing autonomous being, it is staffed by people just like us; human and fallible, add some computers to the mix and well......here we sit. In closing I would like to say thanks to all of you that serve our country in whatever capacity you may find yourself; from nurses to night-watchman and soldiers to salesmen, we all contribute to this great country and I thank you all.