Investigation launched after theft of government data — leak hits US State Department

News
By Benedict Collins
published

US State Department investigating another data leak

Digital US flag
(Image credit: Shutterstock)

Data relating to the US government has been stolen from a contractor and leaked online, prompting the State Department to launch an investigation.

The threat actor stole and leaked documents from tech consulting firm Acuity, which specializes in cybersecurity, DevSecOps, data analytics and operations support services.

The data allegedly contains a significant amount of personal information relating to the Five Eyes intelligence alliance, according to the threat actor who supposedly conducted the theft known as IntelBroker.

Five Eyes data stolen from right under their nose

The Five Eyes intelligence organization is composed of intelligence organizations from the US, UK, Canada, New Zealand, and Australia, which shares intelligence on state and state-sponsored espionage and cyber incidents.

IntelBroker says that the data contained within the confidential files includes full names, email addresses, office numbers and cell phone numbers of US officials in the Pentagon, military and government.

Speaking in the aftermath of the leak, a State Department spokesperson told BleepingComputer, “The Department is aware of claims that a cyber incident has occurred and is currently investigating. The Department takes seriously its responsibility to safeguard its information and continuously takes steps to improve the Department's cybersecurity posture. For security reasons, we will not provide details on the nature and scope of the claim.”

IntelBroker has gained a reputation for stealing sensitive information from US government agencies, including data on healthcare plans from DC Health Link for US House members alongside roughly 170,000 people, and information from the US Immigration and Customs Enforcement (ICE), and the US Citizenship and Immigration Services (USCIS).

IntelBroker is also responsible for stealing hundreds of thousands of Facebook marketplace accounts, alongside alleged DARPA-related military information, files, SQL files, and documents from US military contractor General Electric.

More from TechRadar Pro

Benedict Collins
Benedict Collins
Staff Writer (Security)

Benedict Collins is a Staff Writer at TechRadar Pro covering privacy and security. Benedict is mainly focused on security issues such as phishing, malware, and cyber criminal activity, but also likes to draw on his knowledge of geopolitics and international relations to understand the motivations and consequences of state-sponsored cyber attacks. Benedict has a MA in Security, Intelligence and Diplomacy, alongside a BA in Politics with Journalism, both from the University of Buckingham.