U.S. Census Bureau computer servers uninvolved with the 2020 census were exploited last year during a cybersecurity attack, but hackers’ attempts to keep access to the system were unsuccessful, according to a watchdog report released Wednesday.
The attack took place in January 2020 on the bureau’s remote access servers.
According to the Office of Inspector General, the Census Bureau missed opportunities to limit its vulnerability to the attack and didn’t discover and report the attack in a timely manner. The statistical agency also failed to keep sufficient system logs, which hindered the investigation, and was using operating system no longer supported by the vendor, the watchdog report said.
The bureau’s firewalls stopped the attacker’s attempts to maintain access to the system through a backdoor, but unauthorized changes were still made, including the creation of user accounts, the report said.
In a written response, acting Census Bureau director Ron Jarmin reiterated that none of the systems used for the 2020 census were compromised, nor was the nation’s once-a-decade head count affected in any way.
“Furthermore, no systems or data maintained and managed by the Census Bureau on behalf of the public were compromised, manipulated or lost …” Jarmin wrote.

More from Associated Press
- Microsoft Will Pay $20M to Settle US Charges of Illegally Collecting Children’s Data
- Insider Q&A: Artificial Intelligence and Cybersecurity In Military Tech
- Idaho Hospitals Working to Resume Full Operations After Cyberattack
- Major Massachusetts Health Insurer Hit by Ransomware Attack, Member Data May Be Compromised
- Biden Picks New NSA Head, Key to Support of Ukraine, Defense of US Elections
- White House Unveils New Efforts to Guide Federal Research of AI
- Meta Fined Record $1.3 Billion and Ordered to Stop Sending European User Data to US
- China Tells Tech Manufacturers to Stop Using Micron Chips, Stepping Up Feud With United States
Latest News
- Sysdig Introduces CNAPP With Realtime CDR
- Stay Focused on What’s Important
- VMware Plugs Critical Flaws in Network Monitoring Product
- Hackers Issue ‘Ultimatum’ Over Payroll Data Breach
- US, Israel Provide Guidance on Securing Remote Access Software
- OWASP’s 2023 API Security Top 10 Refines View of API Risks
- Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability
- ChatGPT Hallucinations Can Be Exploited to Distribute Malicious Code Packages
