Tags: 
— Quincy Massachusetts News by Quincy Quarry News – News, Opinion and Commentary
Security warning about the City of Quincy Website
A screenshot
Last night while a Quincy Quarry staffer was in the process of seeking to check for something that should be posted on the City of Quincy website, a disconcerting security warning popped up instead of the City of Quincy homepage.
Needless to say, the Quincy Quarry News’ peep who was surfing for information went to a full stop and then reached out to the Quarry’s world class tech support unit.
Hehehehe — the City of Quincy’s security shield is down!
Image via Vanguard News
After all, an abundance of caution was in order as City of Quincy’s online operations have long and often suffered hack attacks that range from readily as well as easily avoided software virus infections of the city’s email system to a $3.5m million cyberheist from the city employees’ pension fund.
Quincy Quarry News tech personnel then duly reviewed and so expertly determined quickly that the likely reason for the security warning message was that the City of Quincy’s online security personnel failed to update the city’s Secure Sockets Layer (“SSL”) certificate.
Definitely a 404 grade error
A Quincy Quarry News meme
In English rather than tech speak, an SSL certificate is proof that a website has implemented a standard site security technology which typically costs a user $60 a year.
While short money, obtaining an SSL certificate is an all but universally used legitimate website operator’s security technology so as to assure site users that the site’s tech peeps have taken security steps comparable to individuals subscribing to an antivirus software service so as to endeavor to protect their personal online security.
In short, an SSL certificate is as standard a proper online website security step as they come.
Further, if not even more embarrassing for the Koch Maladministration, a website host can set annual SSL certification subscription renewal on auto-pay a la a Netflix account.
Cha-CHING!!!
Image via the BBC
Even so, as of Thursday morning Quincy Quarry found the security warning message was still popping up when surfing for the City of Quincy website.
Needless to say, Quincy Quarry’s ever-growing legions of loyal readers can count on the Quarry to continue to monitor this security lapse and report updates as appropriate.
Maybe if Mayor Koch spent more money on security instead of handling out ridiculous raises to his senior suits and himself we would have fewer security problems. That and also stop paying employees that have been suspended for not weeks but months over misdeeds. I bet it is great to be part of a political family.
Oh, please. Is this the City of Quincy’s attempt at avant-garde performance art? Because if so, bravo! Leaving your website as a security risk is a bold artistic statement about the fragility of digital infrastructure in the modern age. But if it’s not intentional, then I suggest the city invests in more than just a fancy new fountain downtown. Security patches might be a good start. Just a thought.
Kelly,
An FYI: the City of Quincy’s performance when it comes to city online security is more akin to Three Stooges’ slapstick than performance art.
Even worse, whenever something online hits the fan which should have never happened in the first place (e.g,, getting hacked given not using something as simple as two factor login authentication until LONG after such was SOP and millions stolen), the city then spends big money with some computer services vendor to fix the inexcusable shortcoming(s).
Worse yet, it would appear that the City IT peeps then do not duly follow up on vendor recommendations.
On the bright side, however, the computer-controlled Dancing Waters fountain in front of City Hall looks to be keep in good order and so provide Quincy’s peerless mayor with a dramatic look from his third floor imperial, if not also imperious, suite in City Hall.
A 3.5 million dollar pension fund fraud with funds missing months before discovery. Missing rental payments from Quincy’s accounting system from the City of Presidents Golf Course months ago without any explanation as yet. And these are just some of the ones we know about that have become public. How can you expect the City to be able to afford to pay $60 for an SSL certificate when the money disappears into thin air?
Goobs,
Re the cyberheisted $3.5m from the pension fund, the theft was only uncovered because the state pension public sector oversight commission has ordered an audit of the C of Q pension fund’s books as it couldn’t duly complete and then file its annual report. Also note that the C of Q pension fund was so put under state oversight for around a year or thereabouts until the state pension commission was satisfied that the Q’s pension books were in good order.
Next, no offense, but Presidents Golf Course is a Norfolk County-owned public muni golf course.
Did you mean to note Granite Links, the private golf course operated on land leased from mostly the City of Quincy and the rest on Town of Milton-owned property also rented by Granite?
If Granite Links, an “outside” audit of the books that set the lease agreement rental payments was commissioned last year; however, the audit report has yet to be made available for public review. Quelle surprise …
Sorry, yes, I should have stated Granite Links. My apologies to Presidents Golf Course. Thanks for noting this error.
Goobs,
Quincy Quarry can only properly be understanding of the fact that typos and such happen.