Report: Russian Hackers Breached 632K DOJ, Pentagon Email Addresses
Facts
- Bloomberg — citing the US Office of Personnel Management (OPM) — reported on Monday that a Russian-speaking criminal group is responsible for a large-scale cyberattack earlier this year that hacked the email addresses of around 632K employees from the Justice and Defense departments.1
- The hackers targeted vulnerabilities in the widely used file-transfer software called MOVEit to reportedly compromise several areas within the Defense Department, including the Air Force, Army, US Army Corps of Engineers, Office of the Secretary of Defense, and Joint Staff and Defense Agencies.2
- OPM has classified the hack, which occurred on May 28 and May 29, as a 'major incident,' though reassured that the hacked information was 'generally of low sensitivity,' with no classified data obtained.3
- The Russian-speaking group CLoP, which has claimed responsibility for earlier MOVEit attacks, has been accused of carrying out the ransomware hack.1
- Many other organizations, such as airlines and universities, were victims of the MOVEit hack, with a breach in June exposing the personal information of 3.5M residents of Oregon, according to the state's Department of Transportation.1
- Cybersecurity experts have said that the recent hacks were serious, but they don't represent a systemic risk to national security or the nation's networks.4
Sources: 1Forbes, 2American Military News, 3Bloomberg and 4CBS.
Narratives
- Anti-Russia narrative, as provided by The Indianapolis Star. While CLoP appears to be primarily interested in extorting money from its victims rather than undermining national security, the US must work to bring charges against all cyber criminals. It's no secret that Russia — alongside the likes of Iran and China — has been attempting to undermine US cybersecurity, and with the 2024 election cycle getting ever closer, it's paramount that Washington sends the message that it won't tolerate such behavior.
- Pro-Russia narrative, as provided by TASS. It's no surprise that Russian hackers would target the US, given that multiple Western countries, particularly Ukraine with the help of Washington, have attacked the Russian government in a similar manner. Furthermore, the West has also likely supported unofficial, criminal cyberattacks against Moscow. NATO is the one pushing this war into the cybersphere, but what it should really worry about is when its own hackers will eventually turn against it.