- Suspected Russian hackers broke into key government departments and gained access to internal emails.
- Highly sophisticated cyberattacks on federal agencies including the
Treasury and Commerce departments reportedly prompted the National Security Council to meet Saturday. - Several sources told Reuters that security services believed Russian hackers were behind the attacks.
- News of the attacks emerged less than a week after the National Security Agency warned that "Russian state-sponsored actors" were exploiting weak spots in a system used by US federal agencies.
- The security breaches are thought to be part of a wider campaign of cyberwarfare linked to the recent attack on the US cybersecurity firm FireEye.
Suspected Russian hackers have infiltrated several key parts of the US government, including the Treasury and Commerce departments, in a "highly sophisticated" and large-scale cyberattack that took place over several months.
The security breaches were so alarming that they prompted the National Security Council to meet Saturday, Reuters reported, and came less than a week after the National Security Agency warned that "Russian state-sponsored actors" were exploiting weak spots in a computer system used by US federal agencies.
"This is a much bigger story than one single agency," a source familiar with the attack told Reuters.
"This is a huge cyber espionage campaign targeting the US government and its interests."
Another source told Reuters the security breaches were "highly sophisticated," with hackers successfully bypassing the Microsoft security software used by the National Telecommunications and Information Administration.
The tech expert Dmitri Alperovitch, who cofounded CrowdStrike, told the Associated Press that the breaches could amount to "one of the most impactful espionage campaigns on record."
Hackers acquired access to internal emails at the Treasury and Commerce departments as part of an attack that also targeted several other government departments and national security agencies, The New York Times reported.
The National Security Council representative John Ullyot told The Times: "The United States government is aware of these reports, and we are taking all necessary steps to identify and remedy any possible issues related to this situation."
The
Three people familiar with the attack told Reuters that
In a statement posted on social media, the Russian Embassy in the US denied allegations that Moscow was responsible for the attacks and criticized "unfounded attempts of the US media to blame Russia for hacker attacks on US governmental bodies."
While the news of the attacks emerged just last week, they had been underway since the spring, several several sources told The New York Times, meaning hackers were infiltrating the highest levels of US government during both the presidential election campaign and the Trump administration's response to the coronavirus pandemic.
Hackers reportedly broke in by exploiting updates to SolarWinds, an IT company used across the US government and military to manage networks, according to multiple reports. The company's website says customers include the Office of President of the United States, the State Department, and the National Security Agency.