Hacker Accessed Network of U.S. Agency and Downloaded Data

An unnamed U.S. federal agency was hit with a cyber-attack after a hacker used valid access credentials, authorities said on Thursday.

- Advertisement -

While many details of the hack weren’t revealed, federal authorities did divulge that the hacker was able to browse directories, copy at least one file and exfiltrate data, according to the Cybersecurity & Infrastructure Security Agency, known as CISA.

The hacker implanted malware that evaded the agency’s protection system and was able to gain access to the network by using valid access credentials for multiple users’ Microsoft 365 accounts and domain administrator accounts, according to authorities.

Hacker Accessed Network of U.S. Agency and Downloaded Data
Hacker Accessed Network of U.S. Agency and Downloaded Data

Investigators weren’t able to determine how the hacker initially obtained the credentials. But the agency said the hacker might have obtained them by exploiting a known vulnerability in Pulse Secure virtual private network servers.

The network breach wasn’t related to the upcoming U.S. election, according to a Department of Homeland Security official. CISA is part of the department.

- Advertisement -

CISA released technical details about the breach but didn’t provide any information about what data was stolen or whether a rival nation-state carried out the hack. The U.S. government occasionally makes such “technical indicators” public so that companies or other governments can check to see if their systems are under attack.

CISA became aware of the breach via an intrusion detection system that monitors federal civilian agencies.

Also Read:


Xiaomi India Black Friday sale

Xiaomi has announced that it will be holding a Black Friday sale in India, starting from November 26, which will go on till November...

Fake Mi India products worth Rs 33.3 lakh found in Bangalore and Chennai, Xiaomi issues warning for consumers

HIGHLIGHTS Fake Mi India products have been seized from suppliers in Chennai and Bengaluru.Products worth approximately Rs 33 lakhs were seized during the raids.Almost 3000...

YouTube 8K Streaming Support Reportedly Rolling Out to Select Android TV Users

YouTube is reportedly rolling out 8K streaming support for select Android TV users as part of the company’s plans to possibly bring the feature to all users everywhere. According...

PUBG Mobile India was Recently Registered as a Company and Launch Soon

PUBG Mobile is one of the leading mobile battle royale titles. The game has amassed a massive fan base worldwide and holds a special place...

2FA bypass discovered in web hosting software cPanel

Security researchers have discovered a major security flaw in cPanel, a popular software suite used by web hosting companies to manage websites for their customers. The...

Leave A Reply

Please enter your comment!
Please enter your name here