Hackers have breached FBI-affiliated websites and published the personal data of federal agents and law enforcement officers online.
The hackers published sensitive data that contains 4,000 unique records after duplicates were removed, including member names, a mix of personal and government email addresses, job titles, phone numbers, and their postal addresses, learned TechCrunch.
Hackers exploited a flaw in three websites associated with the FBI National Academy Association and exfiltrated the data from the web servers. They have published the stolen data online.
FBINAA said, that they are working with Federal authorities to investigate the incident. “We believe we have identified the three affected Chapters that have been hacked and they are currently working on checking the breach with their data security authorities.”
FBINAA confirms that national database is safe and secure and the intrusion occurs in the chapters where the third-party software was being used and the impact of the breach is unknown.
TechCrunch spoke to one of the hackers, “We hacked more than 1,000 sites, Now we are structuring all the data, and soon they will be sold. I think something else will publish from the list of hacked government sites.”
Hackers said that they use public exploits, which indicates the sites are not up-to-date and also they provided evidence that they have compromised a number of websites including a sub-domain of manufacturing giant Foxconn.
Download Free E-book to learn about complete Enterprise Security Implementation & Mitigation Steps – Download Free-Ebook Here.