According to Homeland Security Secretary Kristi Noem, two dozen members of the Federal Emergency Management Agency’s (FEMA) Information Technology (IT) department have been terminated following the discovery of significant cybersecurity failures. These employees, including FEMA’s Chief Information Officer (CIO) Charles Armstrong and Chief Information Security Officer (CISO) Gregory Edwards, were dismissed for neglecting basic security protocols, which had the potential to put the American public at risk.
Article continues after these messages…
While other outlets focus on getting quotes from politicians who don't even live in our congressional district, we're focused on providing the hard-hitting truths and facts without political spin. We don't lock our news behind a paywall, will you help us keep it that way? If you're tired of news sweetened with confirmation bias, consider becoming a monthly supporter. But if you're not, that's fine too—we're confident in our mission and will be here if you decide you're ready for the truth. Just $5/month helps fund our local reporting, live election night coverage, and more.
Become a paid supporter for reduced ad experience!
The vulnerabilities were identified during a cybersecurity review ordered by Secretary Noem. The Department of Homeland Security (DHS) Office of the Chief Information Officer (OCIO) uncovered substantial security weaknesses that had allowed unauthorized access to FEMA’s network. The investigation revealed multiple serious security oversights that enabled a threat actor to penetrate FEMA’s systems, posing a risk to the entire department and the nation. Fortunately, no sensitive data was compromised, and no American citizens were directly affected before the issue was detected.
During the review process, it was found that FEMA’s IT leadership, reportedly in place for decades, resisted efforts to rectify the security issues. These individuals are alleged to have avoided scheduled inspections and misrepresented the extent of the cyber vulnerabilities to officials. Specific failures identified included a widespread absence of multi-factor authentication, the use of outdated and restricted legacy protocols, unaddressed critical vulnerabilities, and insufficient oversight of operations.
These findings come despite FEMA allocating nearly half a billion dollars towards IT and cybersecurity initiatives in Fiscal Year 2025. The agency’s IT leadership is reported to have failed to meet its fundamental responsibilities, leaving the department vulnerable to cyberattacks, even after substantial financial investment.
Article by Mel Anara, based upon information from the Department of Homeland Security
Do you believe we got something wrong? Please read our publishing standards and corrections policy.
Did you know? Supporters get a reduced ad experience!
Sponsored Articles
Get daily and breaking news for Washington County, MD area from Radio Free Hub City. Sign up with your email today!
Paid supporters have a reduced ad experience!
Discover more from Radio Free Hub City
Subscribe to get the latest posts sent to your email.