Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

US Energy Department Was Hacking Victim

WASHINGTON – The US Department of Energy on Monday confirmed it was the target of a cyber attack in January, which stole employee and contractor data, but said no classified data was compromised.

WASHINGTON – The US Department of Energy on Monday confirmed it was the target of a cyber attack in January, which stole employee and contractor data, but said no classified data was compromised.

The agency, in a memo to staff released to AFP by a spokeswoman, said the “cyber incident that occurred in mid-January” targeted the agency’s network and “resulted in the unauthorized disclosure of employee and contractor personally identifiable information.”

The agency, which manages the country’s nuclear energy programs, said it had begun a probe with federal law enforcement.

The news comes after revelations of high-profile cyber-attacks targeting US news media including The New York Times and The Wall Street Journal said to be originating from China.

The Energy Department made no comment on the source of the attack.

“Based on the findings of this investigation, no classified data was compromised,” the memo said.

It said personal data from “several hundred” employees and contractors may have been affected.

“As individual affected employees are identified, they will be notified and offered assistance on steps they can take to protect themselves from potential identity theft,” it added.

Advertisement. Scroll to continue reading.

“Once the full nature and extent of this incident is known, the Department will implement a full remediation plan… The Department is also leading an aggressive effort to reduce the likelihood of these events occurring again.”

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Cybercrime

As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

Cybercrime

Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.