A “sophisticated cyberattack” has been detected at Oak Ridge National Laboratory over the last several weeks, and authorities suspect the hackers are based in China. The breach might have compromised the personal information of thousands of visitors to the lab, according to a communiqué sent to employees. The intrusion is under active investigation by multiple agencies. FBI and Department of Homeland Security. Investigators have not been able to determine whether the attacks came from government or private entities in China. The statement, from Laboratory Director Thom Mason, said the attack “appears to be part of a coordinated attempt to gain access to computer networks at numerous laboratories and other institutions across the country.”
As for the Oak Ridge breach, the message went on to explain that “hackers potentially succeeded in gaining access to one of the laboratory’s nonclassified databases that contained personal information of visitors to the laboratory between 1990 and 2004.” The personal information at risk includes names, dates of birth and Social Security numbers of the visitors. As part of the hit, “thieves made approximately 1,100 attempts to steal data with a very sophisticated strategy that involved sending staff a total of seven ‘phishing’ e-mails, all of which at first glance appeared legitimate.” One of the fake e-mails appeared to be an announcement for a scientific conference; the other claimed it was a notice of a complaint on behalf of the Federal Trade Commission. The lab’s investigation found that approximately 11 employees took the bait and opened the e-mail attachments, “which enabled the hackers to infiltrate the system and remove data.” The sensitive Tennessee nuclear research facility has a staff of more than 4,200 and hosts approximately 3,000 guest researchers each year. Yaikes.
Source: ABC News
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment