US Capitol Email Data Breach: Information on the Dark Web
Recent reports suggest that a hacking group or potentially a state-sponsored actor has gained unauthorized access to the email accounts of over 3,000 congressional staffers. The stolen information is now reportedly available for purchase on the dark web.
Preliminary investigations indicate that a cyber attack targeted the email servers of the US Capitol, resulting in the theft of around 1,800 passwords belonging to congressional staff. This breach appears to facilitate the large-scale extraction of sensitive political data.
A cybersecurity firm, Proton, has uncovered that many Capitol staffers used their official email addresses for personal online activities, including dating sites, adult content, streaming services, and online gaming. Proton, in collaboration with US-based Constella Intelligence, found that staff members were largely unaware of the risks associated with using official emails for such purposes.
As a result, it is estimated that data from more than 13 staff members may have been compromised, potentially leading to serious security threats in the near future.
MoneyGram Cyber Attack Turns Ransomware
In recent news, MoneyGram, a widely used peer-to-peer money transfer service, has reported falling victim to a cyber attack. The incident, which occurred on September 20, 2024, was publicly disclosed on September 23, 2024 and yet the website needs to be recovered.
Upon detection of the attack, the Texas-based company initiated an investigation that revealed it had been subjected to a sophisticated cyber assault, likely a ransomware attack. This has resulted in significant disruptions to its IT systems.
Experts suggest that the attackers may be demanding a ransom to unlock encrypted databases, further complicating the recovery efforts. The company’s IT team is currently collaborating with cybersecurity specialists to implement a data continuity plan and restore operations.
The US Capitol, located in Washington, DC, serves as the meeting place for members of the United States Congress, playing a crucial role in the federal government.
On October 1,2024, UK Post Office has announced that it will stop offering Money Gram services in all its premises in the wake of cyber attacks.