Politics
US government agencies hit by cyberattack, official says
U.S. government networks were hit by a cyberattack affecting several federal agencies, Cybersecurity and Infrastructure Security Agency Director Jen Easterly confirmed on Thursday.
CISA, a part of the Department of Homeland Security, previously identified a gap in software security believed to have been exploited in attack.
An electronic file transfer application, MOVEit Transfer, is thought to be the target of the broader cyber intrusion, one official said.
A spokesperson for Mandiant, the cyber intelligence arm of Google Cloud, said government data was stolen in the attack. CISA officials declined to say how many federal agencies were impacted and did not say who was behind the attack.
Easterly downplayed the severity of the attack in a call to reporters, saying the intrusion was not as damaging as the SolarWinds hack that impacted government systems in 2020.
MORE: Cybercriminals targeting U.S. on behalf of North Korea: Report
A senior CISA official described the latest attack as “small” in scope.
Federal authorities previously released a joint advisory noting that the file transfer software was vulnerable to attack. At the time, CISA and the FBI said the application was vulnerable to ransomware attacks in which data is locked or stolen and payment is demanded in return.
"The FBI, alongside our partners at CISA, works diligently to share information in a timely manner to enable organizations to better protect themselves from malicious cyber actors," Bryan Vorndran, assistant director of the FBI's cyber division said last week.
A MOVEit representative told ABC News on Thursday that they are taking steps to ensure security, including applying patches.
MORE: Foreign actors 'likely' to use 'information manipulation' tactics during 2022 election: Feds
“We have engaged with federal law enforcement and other agencies and are committed to playing a leading and collaborative role in the industry-wide effort to combat increasingly sophisticated and persistent cybercriminals intent on maliciously exploiting vulnerabilities in widely used software products," the spokesperson said in a statement, in part.
ABC News' Beatrice Peterson contributed to this report.
Yamaha's turning woes led to arm pump for Quartararo in MotoGP Spanish GP
New York Yankees vs. Baltimore Orioles odds, tips and betting trends | April 30
Miami Marlins vs. Colorado Rockies odds, tips and betting trends | April 30
-
Politics4m agoJoe Biden Presses Pause On Menthol Cigarette Ban, NAACP Swiftly Condemns White House
-
Politics4h agoExclusive: Trump Hits Netanyahu on Oct. 7; Says Other Israeli Leaders ‘Could Do a Good Job’
-
Politics4h agoBiden’s Overlooked Advantage
-
Politics6h agoHow famines are formed: In Gaza and elsewhere, an underlying pattern that can lead to hunger and death
-
Politics6h agoInternational prosecution of Israeli or Hamas leaders wouldn’t bring quick justice − and even bringing them to court will be difficult
-
Politics11h agoAppreciating the Marvels of Our Great State – Ed Iannuccilli
-
Politics22h agoTrump and Hush-Money Trial’s Central Witness Share a Tortured History
-
Politics1d agoGreater Detroit is becoming more diverse and less segregated – but Asians and Hispanics increasingly live in their own neighborhoods