Hacker has access to the computer networks of the Federal Emergency Management Agency for several months at the beginning of this year and, according to an overview of the incident, stole information about FEMA employees and American customs and borders.
The Ministry of Internal Security announced Fema 7 July that Hacker has access to his network through the remote board software of Citrix Systems Inc. Using compromised credentials, according to a summary reviewed by Bloomberg News. The intruder violated the region 6 FEMA, which includes Arkansas, Louisian, New Mexico, Oklahoma and Texas, and the data were stolen from servers in the same area according to the document.
The identity of the hacker has not been published. The treatment of violations caused the Minister of Internal Security Kristi Noem to fire two dozen FEMA employees, including more IT executives, according to a person who is familiar with the incident.
Representatives of FEMA, DHS and CBUN did not immediately respond to requests for comment or Citrix spokesperson. Nextgov/FCW has previously given details of the overview.
On July, the hacker moved via FEMA networks and installed Virtual Private Network software in an effort to remotely penetrate the database, according to the overview. Hacker has been successful in obtaining access to Active Directory Microsoft Corp., which uses information technology administrators to manage access control. From there the intruder stole information about employees at FEMA and customs and border protection, another part of the DHS.
FEMA disconnected Citrix Remote Access for Region 6 16 July and forced employees to use multifactors, according to summary.
Hacker was present in the network from 22nd to June to 5th August, the investigation found.
In a statement on August 29, with details of Noem shooting, “IT Fema’s leadership failed at every level,” and said numerous examples of what she called “incompetence”, including the “Multifactor Agency for Celofilidation”. Burning officials did not respond to requests for comment.
Noem said in his statement that “this problem was caught before all American citizens were directly influenced,” and “any DHS networks have not been extracted any sensitive data”. The DHS internal investigation later found that federal employees identity data were successfully stolen according to the overview.
On Thursday, US officials said hackers have threatened firewall Cisco Systems Inc. It is not known which government agencies have been influenced by the attacks or whether the FEMA attack is related in any way.
(Tagstotranslate) hacker
