IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Head of Homeland Security had his email hacked in SolarWinds attack

Suspected Russian hackers at the center of new claims

Suspected Russian hackers accessed email accounts belonging to the Trump administration’s head of the Department of Homeland Security (DHS), according to a new report. 

The Associated Press reports that hackers also gained access to emails belonging to members of the department’s cyber security staff that had the job of hunting foreign cyber threats.

The emails belonged to then-acting secretary Chad Wolf, and hackers compromised them during the months-long SolarWinds attack. It’s unknown what information, if any, was stolen.

Sen. Rob Portman of Ohio, top Republican on the Senate’s Homeland Security and Governmental Affairs Committee, said the SolarWinds hack “was a victory for our foreign adversaries and a failure for DHS. We are talking about DHS’s crown jewels,” AP reported.

In addition to Wolf’s email, hackers also obtained officials’ schedules at the Energy Department, including then-Secretary Dan Brouillette. But, in this instance, schedules were not confidential.

A DHS spokesperson said in a statement to the media that “a small number of employees' accounts were targeted."

"Upon learning about the campaign, the Department took immediate steps to respond to the incident, including leveraging response teams from CISA and private sector partners, to continue executing its mission,” said the spokesperson, reported The Hill.

Related Resource

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

How to manage security risk and compliance - whitepaperDownload now

"The Department no longer sees indicators of compromise on our networks and remains focused on further securing our networks against future attacks, integrating lessons learned from this incident. However, this widespread intrusion campaign has again shown that our strategic adversaries are sophisticated, persistent, and have increasing capabilities."

In interviews with AP, anonymous officials said the response to the hacking campaign was hampered by its outdated technology and there were struggles to discover how many servers ran the SolarWinds software.

In one example, the Federal Aviation Administration (FAA) said the hack didn’t affect it, only to admit a few days later that it was conducting investigations a few days later.

Other victims of the SolarWinds hack include the Commerce and Treasury Departments, National Finance Center, the State Department, the National Institutes of Health, the Energy Department, and the National Nuclear Security Administration.

The AP reported the Biden administration isn’t planning to step up government internet surveillance but will instead focus on better private sector partnerships and enhanced information sharing.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

NOAA unveils two new supercomputers in effort to better predict extreme weather
high-performance computing (HPC)

NOAA unveils two new supercomputers in effort to better predict extreme weather

29 Jun 2022
Google aims to court US public sector with new division
public sector

Google aims to court US public sector with new division

29 Jun 2022
Best free malware removal tools 2022
Security

Best free malware removal tools 2022

22 Jun 2022
A guide to cyber security certification and training
Careers & training

A guide to cyber security certification and training

16 Jun 2022

Most Popular

Actively exploited server backdoor remains undetected in most organisations' networks
cyber attacks

Actively exploited server backdoor remains undetected in most organisations' networks

1 Jul 2022
Macmillan Publishers hit by apparent cyber attack as systems are forced offline
Security

Macmillan Publishers hit by apparent cyber attack as systems are forced offline

30 Jun 2022
Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022