Hijackers disrupt FBI emails to create false Cybersecurity Information

Thousands of people received false email notifications on Friday and Saturday from the Federal Bureau of Investigation after the attackers hacked the FBI website.

Obera used “software interference” to gain access to the Law Enforcement Enterprise Portal (LEEP) and to send emails from what appeared to be an official FBI email ending @ ic.fbi.gov, the FBI said. releasing journalists. LEEP serves as a doorstep for government and state officials to share knowledge and resources as part of their research.

As soon as they realized the threat, the FBI removed the weapons involved, and the threat was “immediately rectified,” according to reporters. Based on his investigation so far, it does not appear that the burglar was able to access FBI files.

“Although the unsolicited email came from an FBI-run server, the server volunteered to push LEEP notifications and was not part of the FBI’s corporate emails,” the FBI said in a statement on Sunday. “No player was able to access or confuse the data or PII [personally identifiable information] on the FBI website. Once we learned of the incident, we promptly redefined the risks of the program, warned our friends to ignore false emails, and verified the integrity of our networks. ”

The false messages warned recipients that they were in danger of being “technically attacked,” according to photos shared on Twitter and. The work of the Spamhaus, the nonprofit organization that follows spam and other online threats. Name of email real life Cybersecurity security expert Vinny Troia as the originator of the false threats and false claims that he is affiliated with The Dark Overlord, the same criminals who committed the atrocities. it rained for the winter for Orange Is New Black. Troia’s Night Lion Security Company, an IT security monitoring company known for its coverage of blackjack and other cybercrime markets, has been published. research report of The Dark Overlord in January.

According to an investigation by The Spamhaus Project, hackers pushed email notifications to addresses removed from the American Registry for Internet Numbers (ARIN) database. “Other unsolicited ARIN emails were included in the spam campaign” as well as, the organization tweeted Saturday. In words of Sleeping Computer, said fake emails reached at least 100,000 inboxes, but I’m probably just guessing. Investigators believe the “campaign was huge,” The Spamhaus Project told the site.

Troia thinks on Twitter that man has a handle “@Pompompur_in” may be at the back of the hack. Speaking to the Sleep Computer, he said the man had tried to insult her by using similar methods in the past. Recently, she went to the National Center for Missing and Exploited Children to publish allegations that she was a child molester, she said.

Troia went on to say that Pompompurin texted him every time he launched a new smear campaign. Instead, he wrote a tweet screen of the DM that a user posted Friday evening that only reads “enjoy.” The next day, as soon as news of the FBI’s portal attack began to spread, he also sent text messages asking “were you happy” before saying he was disgusted that Troia found followers after the incident.

Report from security correspondent Brian Krebs also pointed out that Pompompurin is the founder. According to Krebs, the man sent he The following message from the FBI’s email address when the campaign started: “Hello pompompurin. Check out this email header from the FBI server.

In a statement to Krebs on Security, Pompompurin later said the hack was designed to expose the obvious threats to the FBI’s email scams. To extract emails from the FBI’s official address, he said he used an unsecured number on the LEEP wall to steal the confirmation email and one-time passcode sent when you tried to register the account, which, before this happened. , anyone can do this by simply visiting the website.

This event is the most recent in the series gross violation of US government networks in recent months. In May, President Joe Biden signed off the main rule its purpose is to improve cyber security after cyberbullying, such as sweeping. SolarWinds hack and the ransomware campaign that stopped Colonial Pipe.