Federal Reserve Admits It was Briefly Hacked During Super Bowl

Two days after the group Anonymous boasted it had broken into a government Web site and had the data dump to prove it, the U.S. Federal Reserve admitted it was hacked.”The Federal Reserve system is aware that information was obtained by exploiting a temporary vulnerability in a website vendor product,” a spokeswoman told Reuters Tuesday. “Exposure was fixed shortly after discovery and is no longer an issue. This incident did not affect critical operations of the Federal Reserve system.”

Two days after the gReserveroup Anonymous boasted it had broken into a government Web site and had the data dump to prove it, the U.S. Federal Reserve admitted it was hacked.

“The Federal Reserve system is aware that information was obtained by exploiting a temporary vulnerability in a website vendor product,” a spokeswoman told Reuters Tuesday. “Exposure was fixed shortly after discovery and is no longer an issue. This incident did not affect critical operations of the Federal Reserve system.”

The admission follows a tweet from @OpLastResort that the group had accessed government servers around the time of the Super Bowl and posted private data on more than 4,000 U.S. bank executives. The breach appears to be tied to a internal server that contains contact information for financial institution’s chief executives that the Fed can access during a natural disaster.

Various news sites earlier reported more than contact data was stolen, such as login credentials that included hashed passwords and IP addresses, but an unidentified spokesperson told The Huffington Post the hackers’ claims were “overstated.”

This evening Reuters revealed it had obtained a copy of a message from the Fed to its Emergency Communication System warning that “mailing address, business phone, mobile phone, business email, and fax numbers had been published.

“Some registrants also included optional information consisting of home phone and personal email. Despite claims to the contrary, passwords were not compromised,” the Fed said in the memo.

The theft marks another salvo from hactivists tied to Operation Last Resort, which in January launched a campaign to take on government Web sites after the suicide of Internet activist Aaron Swartz, who was facing prosecution for breaking into M.I.T. servers and posting academic articles from JSTOR without permission.

Last month the U.S. Sentencing Commission Web site was breached in protest of the Swartz case.

 

Suggested articles

Report: Federal Reserve Target of Constant Attacks

The U.S. Federal Reserve reported 50 breaches over the past five years including two that it is classifying as acts of cyber espionage, according to a Reuters Freedom of Information Request.

Reuters Editor Indicted for Helping Hackers Break Into Tribune Co.

A Reuters social media editor on Thursday was charged with helping hackers break into the Tribune Co.’s network shortly after he was fired from a Sacramento television station in Fall 2010.

A U.S. Eastern District grand jury in Sacramento handed down a three-count indictment against Matthew Keys, 26, of Secaucas, N.J., for conspiracy to transmit information to damage a protected computer and transmitting or attempting to transmit that information. The combined counts carry a potential penalty of 25 years’ imprisonment and $750,000 in fines.

Discussion

  • aymen on

    aymen

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.