Data Breaches

Hackers Take Data for Further Reconnaissance in Breach of Federal Agency

Initial access to the agency’s system was possibly due to failure to fix a known VPN vulnerability, a patch for which was released in April 2019.

IG: CBP Responsible for 2019 Biometrics Breach, Though No Federal Networks Were Compromised

A ransomware attack on a Customs and Border Protection vendor leaked facial images on more than 184,000 travelers—something agency security and policy should have prevented.

Audit: HUD Doesn’t Ensure Sensitive Data It Shares Is Secure

A Government Accountability Office pointed to high turnover rates for top privacy and IT security officials as a reason for the agency's poor performance.

46,000 Veterans' Data Exposed In Financial Services Center Breach

Hackers were able to divert payments headed to private sector health care providers.

CISA, International Counterparts Highlight Mistakes Organizations Make After a Cyber Intrusion

A lot of what’s necessary to appropriately respond to a cyber incident should happen way in advance.

Survey: Nearly 3 in 4 Americans Want More Government Oversight on Data Privacy

Slightly less than half of Americans say they wouldn’t share any sort of sensitive information with a business for any reason.

Using Automated Security Protocols Reduce the Cost of Data Breaches, Report Says

U.S. agencies lead in adopting security automation and orchestration, an expert said.  

CIA Report Prompts Call for DHS Cyber Authority Over Intelligence Agencies

Senator asks the director of national intelligence why his office hasn’t implemented a basic anti-phishing tool like the rest of the government.

U.S. Marshals Service Breach Exposed Personal Data of 387,000 Prisoners

The agency notified affected individuals this month after learning about the intrusion in December.

Preventing Remote Workers from Being Sitting Ducks

Unlike workers in other industries, most federal workers have largely conducted business within the four walls of their agency.

DISA Confirms Data Breach Affecting 200,000 People

Defense officials provided few details but said the affected systems have since been secured.

America’s Hopelessly Anemic Response to One of the Largest Personal-Data Breaches Ever

The government has indicted four members of China’s People’s Liberation Army for hacking into the credit-reporting agency Equifax. The question is why.

Justice Department Attributes Equifax Hack to Chinese Military Officers 

Officials highlight the theft of intellectual property, in addition to personal information.

German Researchers Accessed Service Members’ Sensitive Medical Data—and One Lawmaker Wants Answers

Sen. Mark Warner wants to know what the Defense Health Agency is doing to secure “a significant number” of medical images.

Senators Renew Effort to Safeguard People’s Data Online

The bill would make companies subject to fines from the Federal Trade Commission if they poorly protect data.

Russian Hackers Launch Cyberattacks Against International Athletics Organizations

The attacks come as the World Anti-Doping Agency threatens to bar Russia from participating in major competitions, including the Olympics and other world championship events.

Senators Push FTC to Investigate Amazon’s Role in Capital One Hack

The bank was renting servers from the tech company, which were exploited in the attack.