Several federal agencies were hit in a cyberattack, the Cybersecurity and Infrastructure Security Agency confirmed Thursday.
Topline
A global cyberattack targeting a widely used file-transfer service has hit multiple U.S. government agencies, federal officials announced Thursday, joining a string of recent hacks on private organizations that have been largely blamed on a Russian-speaking criminal group.Key Facts
The Department of Energy was among the impacted agencies, a spokesperson told Forbes, noting “records from two DOE entities were compromised” as part of a wider attack on MOVEit file-sharing software.
The Cybersecurity and Infrastructure Security Agency hasn’t named any other targeted government agencies, but a senior CISA official told reporters Thursday a “small number” were victims, and the list doesn’t appear to include the intelligence community or military.
So far, the government hasn’t received any extortion demands or observed any data leaks, and users of MOVEit can now install a patch to eliminate the software vulnerability used by hackers, the CISA official said—the Energy Department said the agency “took immediate steps to prevent further exposure to the vulnerability.
