US Transport Security Administration worker charged with data tampering

The US Department of Justice (DoJ) has charged a former Transportation Security Administration (TSA) employee with trying to inject malicious code into TSA databases.

The US Department of Justice (DoJ) has charged a former Transportation Security Administration (TSA) employee with trying to inject malicious code into TSA databases.

A federal jury has indicted 46-year-old Douglas James Duchak of Colorado Springs on two counts of intentionally attempting to damage a protected computer, according to a DoJ statement.

Duchak worked at the TSA's Colorado Springs Operations Center (CSOC) from August 2004 until October 2009 as a data analyst in charge of updating TSA computers with information from the US terrorist screening database and the US Marshals Service warrant information network.

A week after he was told his employment would be terminated, Duchak allegedly injected unauthorised code into the TSA server containing the warrant information.

The following day, he allegedly tried to load malicious code onto a server that contained the terrorist screening information.

TSA's Office of Inspection and IT Security worked quickly to uncover and respond to this potential threat in partnership with agents from the DHS Office of Inspector General and the FBI, said David Holmes, TSA assistant administrator, Office of Inspection.

"This is an excellent example of how TSA and law enforcement work together to ensure the security of information technology that is critical to protecting the nation's transportation system," he said.

Duchak, who was released on bail after pleading not guilty, faces up to 10 years in prison and a fine of up to $500,000, if convicted on both charges.

The TSA has come under close scrutiny and has been tightening up on security after TSA screeners missed a man who attempted to blow up a US flight from Amsterdam to Detroit on Christmas Day.

Read more on IT legislation and regulation

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

  • How do I size a UPS unit?

    Your data center UPS sizing needs are dependent on a variety of factors. Develop configurations and determine the estimated UPS ...

  • How to enhance FTP server security

    If you still use FTP servers in your organization, use IP address whitelists, login restrictions and data encryption -- and just ...

  • 3 ways to approach cloud bursting

    With different cloud bursting techniques and tools from Amazon, Zerto, VMware and Oracle, admins can bolster cloud connections ...

SearchDataManagement

Close