Zerosecurity
  • Home
  • Security
    • Exploits
    • Mobile Security
  • Malware
  • Data Breaches
  • Crypto
  • Privacy
  • Downloads
    • Malwarebytes
    • Exploits
    • Paper Downloads
    • Software & Service Reviews
No Result
View All Result
SUBSCRIBE
Zerosecurity
  • Home
  • Security
    • Exploits
    • Mobile Security
  • Malware
  • Data Breaches
  • Crypto
  • Privacy
  • Downloads
    • Malwarebytes
    • Exploits
    • Paper Downloads
    • Software & Service Reviews
No Result
View All Result
Zerosecurity
No Result
View All Result
Home Data Breaches

US politicians personal details compromised in hack

Kyle by Kyle
March 9, 2023
in Data Breaches
0
US House members data sell breachforum
6
SHARES
165
VIEWS
Share on FacebookShare on Twitter

A hacker has claimed that personally identifiable information (PII) belonging to several members of the US Congress may have been compromised in a cyberattack on DC Health Link, the online health insurance marketplace of the District of Columbia.

You might also like

Acer corporate confirms breach – data being sold for Monero

Blackmailing data thieves who targeted thousands of businesses apprehended

State sponsored hackers were in News Corp’s servers for two years

The data breach came to light earlier this week after DC Health Link announced that the FBI had informed them that some of the stolen information was already available for purchase on the dark web. DC Health Link is responsible for managing the healthcare plans of the US House of Representatives members, staff, and their families.

In an internal memo sent to staff members on Monday, the House Chief Administrative Officer, Catherine L. Szpindor, notified them of a “significant data breach,” which potentially exposed the sensitive personal details of thousands of employees.

The gravity of this incident cannot be overstated, as PII can be used for identity theft, financial fraud, and other malicious purposes. It is crucial that immediate action is taken to secure the compromised information and prevent further damage.

“As a member or employee eligible for health insurance through the DC Health Link, your data may have been comprised,” Szpindor stated.

“Currently, I do not know the size and scope of the breach but have been informed by the Federal Bureau of Investigation (FBI) that account information and PII of hundreds of members and house staff were stolen. It is important to note that at this time, it does not appear that members of the House of Representatives were the specific target of the attack,” she added.

US House Notification breach
U.S. House breach notification email (Henry Rodgers/DailyCaller)

House Speaker Kevin McCarthy and Minority Leader Hakeem Jeffries took action on Wednesday by sending an email to their colleagues to inform them about a breach that occurred. Their email addressed the seriousness of the situation, stating that the safety and security of all individuals in the Capitol Hill community is their top priority in light of the recent cyber hack. McCarthy and Jeffries described the incident as an “egregious security breach” and emphasized the importance of taking necessary steps to ensure the protection of everyone affected.

Chairman Steil is aware of the breach and is working with the CAO to ensure the vendor takes necessary steps to protect the PII of any impacted member, staff, and their families. https://t.co/6rI2sVbME7

— House Admin. Committee GOP (@HouseAdmin) March 8, 2023

The specifics surrounding the data breach that impacted DC Health Link are still uncertain, including its cause, size, and scope. However, on Monday, a post on a dark web forum suggested that the stolen material was up for sale. The post, made by a threat actor known as IntelBroker on Breachforum, claimed responsibility for breaching the DC[.]gov Health Benefit Exchange Authority and obtaining the personal information of members of the US House.

US House Breach Breachforum IntelBroker
Breachforum thread selling the U.S. House members’ data (credits: Bleepingcomputer)

IntelBroker stated that they were selling this information to interested parties and specified that they would only accept an undisclosed amount in XMR cryptocurrency.

The compromised data, according to a report by BleepingComputer, included the personal information of approximately 170,000 individuals. This information encompasses sensitive data such as names, dates of birth, addresses, email addresses, phone numbers, Social Security Numbers, and other personal details. The threat actor further added that they had already sold the stolen information to at least one buyer.

Adam Hudson, a spokesman for the Health Benefit Exchange Authority, has confirmed the breach in a statement, acknowledging that the personal information of some DC Health Link customers had been exposed on a public forum.

“Concurrently, we are taking action to ensure the security and privacy of our users’ personal information. We are in the process of notifying impacted customers and will provide identity and credit monitoring services.”

The FBI has confirmed its knowledge of the incident and is providing assistance with the ongoing investigation.

“As this is an ongoing investigation, we do not have any additional information to provide at this time,” a spokesperson added.

This unfortunate incident underscores the need for heightened cybersecurity measures to protect sensitive information from cybercriminals. We urge everyone to take steps to safeguard their personal information and to remain vigilant in the face of ever-evolving cyber threats.

Tags: BreachforumcongresshackedIntelBroker
Share5Tweet3
Kyle

Kyle

Co-owner, writer, and editor at ZeroSecurity. Security, Blockchain, and SEO enthusiast. "Formal education will make you a living; self-education will make you a fortune."

Recommended For You

Acer corporate confirms breach – data being sold for Monero

by Kyle
March 8, 2023
0
Acer corporate confirms breach – data being sold for Monero

Acer, the sixth-largest PC maker in the world, has confirmed that it suffered a data breach in mid-February 2023 that compromised its intellectual property and other sensitive data....

Read more

Blackmailing data thieves who targeted thousands of businesses apprehended

by Paul Anderson
February 26, 2023
0
Blackmailing data thieves arrested by Dutch police

The Dutch police recently apprehended three additional suspects in what is considered one of the most significant data extortion cases to date. These suspects, aged between 18 and...

Read more

State sponsored hackers were in News Corp’s servers for two years

by Christi Rogalski
February 24, 2023
0
News Corp Hacked

News Corporation (News Corp), a media and publishing powerhouse, has reported that the attackers responsible for the data breach they disclosed in 2022 had accessed their systems two...

Read more

Shanghai National Police database hacked – 1 billion Chinese citizens leaked

by Paul Anderson
July 7, 2022
0
Shanghai China police database hack

A hacker going by the pseudonym "ChinaDan" has posted a thread on a popular hacking forum BreachForums, stating that they are selling Shanghai's National police database (SHGA). The...

Read more

Healthcare Provider Kaiser Permanente Suffers Data Breach Impacting 70k Patients

by Paul Anderson
June 18, 2022
0
Kaiser Permanente suffers data breach

Founded in July 1945, Kaiser Permanente is an integrated managed care consortium with its headquarters located in Oakland, California. Kaiser is arguably the largest non-profit health care and...

Read more
Next Post
Plex RCE responsible-for lastpass breach

Plex media server seen exploited in the wild utilizing a 3 year old RCE

Related News

BreachForums Owner Arrested and Charged

BreachForums Owner Arrested and Charged

March 17, 2023
ChipMixer platform tied to crypto laundering scheme – seized by authorities

ChipMixer platform tied to crypto laundering scheme – seized by authorities

March 17, 2023
NSA intercepting U.S. Routers

NSA intercepting U.S. Routers

June 6, 2014 - Updated on March 17, 2023
Zerosecurity

We cover the latest in Information Security & Blockchain news, as well as threat trends targeting both sectors.

Categories

  • Crypto
  • Data Breaches
  • DotNet Framework
  • Downloads
  • Exploits
  • Exploits
  • Information
  • Legal
  • Malware
  • Malware Analysis
  • Mobile Security
  • Paper Downloads
  • Piracy
  • Privacy
  • Programming
  • Public
  • Security
  • Security
  • Software & Service Reviews
  • Technology News
  • Tools
  • Tutorials
  • Video Tutorials
  • Whitepapers
  • Zero Security
  • Contact Us
  • List of our Writers

© 2022 ZeroSecurity, All Rights Reserved.

No Result
View All Result
  • Home
  • Security
  • Exploits
  • Data Breaches
  • Malware
  • Privacy
  • Mobile Security
  • Tools
  • Contact Us
  • Privacy Policy

© 2022 ZeroSecurity, All Rights Reserved.