[ad_1]
A group of hackers has raped several FBI-affiliated websites and uploaded their content to the Web, including dozens of files containing personal information from thousands of federal agents and peace officers, has learned TechCrunch.
Hackers have violated three sites badociated with the FBI National Academy Association, a coalition of chapters across the United States promoting leadership and training at the federal level and in law enforcement, located in the academy FBI training course in Quantico, VA. Hackers exploited flaws on at least three of the organization's sectional Web sites – which we do not name – and downloaded the content of each web server.
Hackers then put the data to upload on their own website, which we do not name and link to, given the sensitivity of the data.
The spreadsheets contained about 4,000 unique records after deleting duplicates, including member names, a combination of personal and government email addresses, job titles, phone numbers, and their mailing addresses. FBINAA could not be contacted for comment outside office hours. If we hear back, we will update.
TechCrunch spoke to one of the hackers, who did not identify his name, via an encrypted discussion on Friday night.
"We have hacked over 1,000 sites," said the hacker. "We are now structuring all the data and they will soon be sold. I think something else will come out of the list of hacked government sites. "We asked if the hacker was concerned that the downloaded files would endanger federal agents and law enforcement. "Probably, yes," said the hacker.
The hacker claimed to have "more than a million data" [sic] on employees of several US federal agencies and public service organizations.
It is not uncommon for data to be stolen and sold on hacker forums and in dark Web markets, but hackers have said they will offer the data for free to show they have something 'interesting.
Without prompt, the hacker sent a link to another FBINAA chapter website that they claimed to have hacked. When we opened the page in a Tor browser session, the website had been tampered with, visibly displaying a screen capture of encrypted threads a few moments earlier.
The hacker – one of more than ten, he said – used public exploits, indicating that many of the websites visited were not up to date and had outdated plugins.
In the encrypted chat, the hacker also provided evidence of other infringed websites, including a subdomain belonging to the manufacturing giant Foxconn. One of the links provided did not require either username or pbadword, but revealed the back end to a Lotus-based webmail system containing thousands of employee records. including email addresses and phone numbers.
Their ultimate goal: "Experience and money," said the hacker.
Source link
