Pennsylvania's former chief information security officer Bob Maley has confirmed that he was removed from the position for disclosing information about a security incident at a state agency.
In March, the SC Magazine website reported Maley as being dismissed following an appearance at the RSA Conference in the United States. Speaking at the AusCERT 2010 conference in Queensland, Australia, on Monday, Maley again described the incident he had revealed earlier in the year. It involved a Philadelphia driving school owner who used a proxy server in Russia to mask his identity and then exploit a system bug so he could schedule exams for his students.
"It embarrassed the Commonwealth of Pennsylvania that the [web] application was not so secure," Maley said.
For more on this story, see Exec admits security talk cost his job on ZDNet Australia.