Leidos Holdings Inc., a leading IT services provider for the U.S. government, has fallen victim to a cybersecurity breach. Hackers have leaked internal documents from the company, raising serious concerns about the security of sensitive government data managed by third-party contractors.
Leidos: A Key Player in Government IT Services
Leidos, formed in 2013, has established itself as a crucial player in national security through its IT services and solutions. In the 2022 fiscal year, Leidos was the largest federal IT contractor, with $3.98 billion in contract obligations.
The company’s client roster includes high-profile organizations such as the Defense Department, Department of Homeland Security, NASA, and other U.S. and foreign agencies. Notably, 87% of Leidos’ revenue comes from contracts with the U.S. government.
The Breach: Origin and Scope
The leaked documents are believed to have been stolen during two separate breaches of Diligent Corp. in 2022, a platform used by Leidos. According to a Bloomberg News report, Leidos used the Diligent system to host information gathered in internal investigations.
๐๐ฎ๐ฐ๐ธ๐ฒ๐ฟ๐ ๐๐ฒ๐ฎ๐ธ ๐๐ผ๐ฐ๐๐บ๐ฒ๐ป๐๐ ๐๐ฟ๐ผ๐บ ๐ฃ๐ฒ๐ป๐๐ฎ๐ด๐ผ๐ป ๐๐ง ๐ฆ๐ฒ๐ฟ๐๐ถ๐ฐ๐ฒ๐
Hackers have leaked internal documents stolen fromย Leidos Holdings Inc., one of the largest IT services providers to the US government.
Leidosโ customers include:
– Theย Defenseโฆ pic.twitter.com/L60KjgVeBM
— Shadow of Ezra (@ShadowofEzra) July 23, 2024
The Cyber Press team investigation revealed that the stolen data comprises one gigabyte of files in various formats, including zip, msg, doc, jpg, png, xls/x, and pdf. These files are associated with Leidos technical assistance and its customers. The leaked data is divided into two parts: part one contains 451 files representing credits, while part two includes 6,500 files representing bitcoins or dollars.
Potential Impact and Ongoing Investigation
While the nature and sensitivity of the stolen documents remain unclear, the leak underscores vulnerabilities in the cybersecurity frameworks of companies handling critical government information. Leidos has confirmed its awareness of the issue and is actively investigating the extent of the breach. However, the company has not yet made a public statement regarding the specifics of the leaked documents or the steps it is taking to mitigate the impact.
Some Redditors are claiming this data was stolen over a year ago, but just released today:
Comment
byu/Lawyer__Up from discussion
inBB_Stock
Broader Implications for Cybersecurity
This incident has sparked a broader discussion on the security measures and protocols employed by government contractors. Cybersecurity experts warn that breaches of this nature can lead to severe consequences, including financial losses, reputational damage, operational disruptions, and legal complications. Moreover, such incidents can erode consumer trust and subject organizations to intense scrutiny from regulators and customers.
Next Steps and Future Concerns
The threat actor responsible for the breach has indicated plans to sell the data in two different types, further exacerbating concerns over the potential misuse of sensitive information. This development has prompted Leidos to take immediate action to evaluate the extent of the damage and strengthen its defenses against future attacks.
As the investigation unfolds, the cybersecurity community and government agencies will be closely monitoring the situation. The incident serves as a stark reminder of the ongoing challenges in protecting sensitive data in an increasingly complex digital landscape, particularly when it involves critical national security information.