Capitol Riot Puts Congressional Computer Safety at Risk

(Bloomberg) -- In the aftermath of Wednesday’s intrusion at the U.S. Capitol, federal authorities are contending with cybersecurity risks created by rioters roaming freely through congressional offices with unsecured computers.

While there is no indication that hacking into computer networks was a goal of the rioters, at least one laptop was reported missing and the potential exists that the intruders gained access to sensitive systems when members of Congress and their staff hastily took cover, according to cybersecurity experts. As a result, both the House and the Senate should devote resources to mitigating any potential vulnerabilities, they said.

“The images and videos from yesterday clearly show crowds entering offices, interacting with devices and at least one unlocked computer,” said Camille Francois, the chief innovation officer at the firm Graphika Inc., which studies social media. “This raises cybersecurity concerns, and potential for compromises. Devices left behind should no longer be considered trusted.”

In a video posted to Twitter, Senator Jeff Merkley, Democrat from Oregon, showed his ransacked office and narrated the destruction he found when he returned. The intruders, he said, “stole the laptop that was sitting on a table next to the telephone.”

David Wolpoff, chief technology officer of the security firm Randori Inc., said that once physical boundaries are breached, everything digital in that space becomes “to some degree suspect.”

“One of the immutable laws of cybersecurity is if someone has physical access to your computer then it’s not your computer anymore,” Wolpoff said.

David O’Boyle, spokesperson for the administrative office of the House of Representatives, said in a statement that officials took steps to ensure that the House network and devices remained secure during the upheaval. “We remain vigilant in monitoring the security of the House network, systems, and information,” O’Boyle said.

The Capitol Police didn’t respond to a request for comment. The U.S. Cybersecurity and Infrastructure Security Agency referred questions about the technical implications of the riot to the House and Senate sergeants-at-arms. The House Sergeant resigned Thursday and the Senate sergeant -- who Senate Minority Leader Chuck Schumer threatened to fire Thursday -- couldn’t be reached for comment.

The rioters had the opportunity to take sensitive materials as they stormed the Capitol, including external hard drives and USB sticks -- even if they hadn’t planned to do so, said Jerry Ray, chief operating officer of the security firm SecureAge Technology. That the intruders may have had access to logged in work stations -- meaning their owners fled before logging out -- means that congressional passwords, encryption standards and routing should be revised in the coming weeks.

“Overkill is essential right now,” he said.