Some of the emails reportedly contained sensitive information such as passwords, medical records and the itineraries of top officers.
Some of the emails reportedly contained sensitive information such as passwords, medical records and the itineraries of top officers.
Or simply set rules to disallow any emails sent to a .ml domain. It’s not a perfect solution because legitimate emails could get caught in the filter. But it would prevent the issue of mis-addressed emails.
I doubt the number of US military who legitimately needs to email .ml addresses is that big. Block it for everyone minus known ppl who deal with mali stuff (and have been briefed on the issue). Sort out the ones you missed on day 0. Worst case some legitimate mail to mali gets delayed - whatever. If its urgent, i hope they have better comms channels than email. For external contractors, send them an email with vague threats of consequences if they leak (and instructions to fix their address books). Some mail will still be missent, but this should mitigate most of it.
This is the simple answer so you know it won’t happen.
Yea that’s cheaper than my plan. Good call.