Investigation launched after theft of government data — leak hits US State Department
US State Department investigating another data leak
Data relating to the US government has been stolen from a contractor and leaked online, prompting the State Department to launch an investigation.
The threat actor stole and leaked documents from tech consulting firm Acuity, which specializes in cybersecurity, DevSecOps, data analytics and operations support services.
The data allegedly contains a significant amount of personal information relating to the Five Eyes intelligence alliance, according to the threat actor who supposedly conducted the theft known as IntelBroker.
Five Eyes data stolen from right under their nose
The Five Eyes intelligence organization is composed of intelligence organizations from the US, UK, Canada, New Zealand, and Australia, which shares intelligence on state and state-sponsored espionage and cyber incidents.
IntelBroker says that the data contained within the confidential files includes full names, email addresses, office numbers and cell phone numbers of US officials in the Pentagon, military and government.
Speaking in the aftermath of the leak, a State Department spokesperson told BleepingComputer, “The Department is aware of claims that a cyber incident has occurred and is currently investigating. The Department takes seriously its responsibility to safeguard its information and continuously takes steps to improve the Department's cybersecurity posture. For security reasons, we will not provide details on the nature and scope of the claim.”
IntelBroker has gained a reputation for stealing sensitive information from US government agencies, including data on healthcare plans from DC Health Link for US House members alongside roughly 170,000 people, and information from the US Immigration and Customs Enforcement (ICE), and the US Citizenship and Immigration Services (USCIS).
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
IntelBroker is also responsible for stealing hundreds of thousands of Facebook marketplace accounts, alongside alleged DARPA-related military information, files, SQL files, and documents from US military contractor General Electric.
More from TechRadar Pro
- This previously unknown malware has some crafty tricks for avoiding antivirus
- Here is our guide to the best firewalls
- Take a look at the best identity theft protection
Benedict Collins is a Staff Writer at TechRadar Pro covering privacy and security. Benedict is mainly focused on security issues such as phishing, malware, and cyber criminal activity, but also likes to draw on his knowledge of geopolitics and international relations to understand the motivations and consequences of state-sponsored cyber attacks. Benedict has a MA in Security, Intelligence and Diplomacy, alongside a BA in Politics with Journalism, both from the University of Buckingham.
"Doing more with less": NetSuite founder on AI — and why it might actually go a long way to helping boost traditional industries such as accounting
No 'independent chip makers and system makers and storage makers': Industry expert paints bleakest picture of future of IT — insatiable tech appetite of Google, Microsoft and other hyperscalers could kill off competition forever