Hackers who targeted the federal government appear to be part of a Russian intelligence campaign aimed at multiple U.S. agencies and companies, including the cybersecurity firm FireEye, officials said Sunday.
A Commerce Department spokesman confirmed a breach, saying it occurred at an unidentified bureau.
Department officials alerted the FBI and a cybersecurity agency within the Department of Homeland Security, the spokesman said, declining to comment further.
The White House National Security Council also confirmed that it was looking into another potential intrusion at the Treasury Department after Reuters reported that foreign government-backed hackers accessed internal government emails.
The Washington Post first reported that the hacks were carried out by Russia’s Foreign Intelligence Service, or SVR.
Among the SVR’s targets was FireEye, a major U.S. cybersecurity company with extensive government contracts, the Post reported. The firm’s CEO said last week that it had been hacked “by a nation with top-tier offensive capabilities.”
A private cybersecurity official briefed on the matter confirmed the SVR’s involvement to NBC News.
FireEye CEO Kevin Mandia said the hackers’ primary goal appeared to be stealing information from the firm’s government clients.
It wasn’t clear how much information the hackers accessed, though the company said they obtained tools used by FireEye’s “Red Team,” or the section tasked with defending against new cyber attacks.
The Post reported that the Commerce Department breach targeted Solar Winds, an information technology system used by tens of thousands of organizations. NBC News has not independently confirmed this.
The FBI and National Security Agency declined to comment Sunday.
In a statement, the Homeland Security Department’s cybersecurity agency said it was investigating “recently discovered activity on government networks.”
The agency added that it was providing technical assistance to help blunt potential compromises.
Source: | This article originally belongs to Nbcnews.com
