Iowa hired a cybersecurity firm to do penetration testing, then arrested its workers

Iowa hired a cybersecurity firm to do penetration testing, then arrested its workers 1
In brief: With data breaches and ransomware attacks seemingly occurring weekly, Iowa state officials thought it would be an opportune time to have professionals test the security at government facilities around the state. So it hired cybersecurity firm Coalfire to conduct penetration testing (pen testing) on both infrastructure components like servers and physical building access. Then something else happened…

In one of its tests back in September, two Coalfire employees found a door at the Dallas County Courthouse wide open. They entered the building and intentionally set off an alarm to test law enforcement response, which was part of the job. As per the company’s policy, the security workers waited for the police to show up to show them their paperwork proving they were hired to check the security of the building.

Initially, the first deputies on the scene checked their documentation and said they were “good to go.” However, the local sheriff arrived within minutes and arrested them. The employees were charged with third-degree felony burglary and possession of burglary tools. They spent the night in jail, and Coalfire posted their excessive $100,000 bail the next day.

The company and its workers expected the state to drop the charges quickly since it had a contract to do pen testing at the courthouse, but it has boiled in to what appears to be a dispute between jurisdictional officials.

“Failing to de-escalate the issue and bring in State/County politics, Sheriff Leonard communicated in an email ‘that this building belonged to the taxpayers of Dallas County and the State had no authority to authorize a break-in.'”

According to Coalfire, the incident was caused by the state not being on the same page as Coalfire in the scope of the contract, and the local sheriff not being clued-in on the job.

“Coalfire and State Court Administration believed they were in agreement regarding the physical security assessments for the locations included in the scope of work,” said the firm in a press release back in September. “Yet, recent events have shown that Coalfire and State Court Administration had different interpretations of the scope of the agreement.”

At the time, Coalfire was confident that it could work out the misunderstanding by coming together with officials to discuss the confidential details of the contract. However, the charges were only reduced to criminal trespassing instead.

In a statement, Coalfire CEO Tom McAndrew said, “The ongoing situation in Iowa is completely ridiculous, and I hope that the citizens of Iowa continue to push for justice and common sense. Today, we found out that charges against [our] employees at the center of the Dallas County Courthouse incident … have been reduced from felony accusations of Burglary in the third-degree and possession of burglary tools to criminal trespass.”

“I do not consider this a “win” for our employees, and Coalfire will continue to support and aggressively pursue all avenues to ensure that all charges are dropped and their criminal records are purged of any wrongdoing,” McAndrew added.

“My hope is that the officials involved in this case will appropriately consider the context in which the actions of our employees were performed and the ongoing dispute between the state and the county related to governance of the court buildings.”

The ramifications of this incident are far broader than just a beef between Coalfire and state officials. If the employees are not exonerated on all charges, it could have lasting effects on whether other security firms that do pen testing choose to take jobs with state and municipal authorities.

Hopefully, the issue will be settled without the need for further litigation. It would seem that the sheriff, in this case, made a bad call, and it probably would not hold up under a jury trial, but it should not go that far.

“Sheriff Leonard failed to exercise common sense and good judgement [sic] and turned this engagement into a political battle between the State and the County,” McAndrew said. “I spoke with the team immediately after their release and promised to do everything I could to get this resolved. I intend to keep my promise. The fact that this case is still ongoing is a failure of the criminal justice system in Iowa.”

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 60,930.00
ethereum
Ethereum (ETH) $ 4,078.42
binance-coin
Binance Coin (BNB) $ 480.93
tether
Tether (USDT) $ 1.00
cardano
Cardano (ADA) $ 2.15
solana
Solana (SOL) $ 194.72
xrp
XRP (XRP) $ 1.08
polkadot
Polkadot (DOT) $ 43.15
dogecoin
Dogecoin (DOGE) $ 0.247675
usd-coin
USD Coin (USDC) $ 0.999473
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 60,930.00
ethereumEthereum (ETH)
$ 4,078.42
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 622.48
litecoinLitecoin (LTC)
$ 194.96
bitcoinBitcoin (BTC)
52.325,16
ethereumEthereum (ETH)
3.502,45
tetherTether (USDT)
0,858775
bitcoin-cashBitcoin Cash (BCH)
534,57
litecoinLitecoin (LTC)
167,43
bitcoinBitcoin (BTC)
44,215.38
ethereumEthereum (ETH)
2,959.61
tetherTether (USDT)
0.725675
bitcoin-cashBitcoin Cash (BCH)
451.72
litecoinLitecoin (LTC)
141.48

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Behind The Scenes: How this Crypto Community Responded to + $50m Hack
October 18, 2021
Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021

Blockchain/Cryptocurrency Questions and Answers

ICo Presale
The Science Behind ICO Presales…
October 14, 2021
Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin61,131 0.18 % 0.31 % 1.10 %
Ethereum4,086.9 0.10 % 2.29 % 5.18 %
Binance Coin482.08 0.29 % 0.49 % 1.26 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Cardano2.150 0.06 % 0.81 % 3.56 %
Solana194.94 0.83 % 1.59 % 19.61 %
XRP1.090 0.20 % 0.62 % 5.12 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
Dogecoin0.2481 0.26 % 0.60 % 5.54 %
USD Coin1.000 0.14 % 0.20 % 0.17 %

bitcoin
Bitcoin (BTC) $ 60,930.00
ethereum
Ethereum (ETH) $ 4,078.42
binance-coin
Binance Coin (BNB) $ 480.93
tether
Tether (USDT) $ 1.00
cardano
Cardano (ADA) $ 2.15
solana
Solana (SOL) $ 194.72
xrp
XRP (XRP) $ 1.08
polkadot
Polkadot (DOT) $ 43.15
dogecoin
Dogecoin (DOGE) $ 0.247675
usd-coin
USD Coin (USDC) $ 0.999473