Amegix

Amegix

House panels launch probe into massive cyberattack that breached federal agencies

Two key House panels on Thursday announced a joint investigation into the massive cyberattack that hit multiple federal agencies, in what may be one of the most damaging digital intrusions in years.

Homeland Security Committee Chairman Bennie ThompsonBennie Gordon ThompsonOvernight Defense: Top US general meets with Taliban | House panel launches probe into cyberattack | Army to issue face masks for soldiers in 2021 House panels launch probe into massive cyberattack that breached federal agencies Hillicon Valley: Lawmakers call for action after ‘devastating’ cyberattack on federal government | US cyber agency issues emergency directive following hacks | FTC opens privacy study into major internet platforms MORE (D-Miss.) and Oversight and Reform Committee Chairwoman Carolyn MaloneyCarolyn MaloneyOvernight Defense: Top US general meets with Taliban | House panel launches probe into cyberattack | Army to issue face masks for soldiers in 2021 House panels launch probe into massive cyberattack that breached federal agencies Sackler family points fingers at Purdue Pharma during House hearing on opioids MORE (D-N.Y.) informed top intelligence officials that they will be investigating the breach of SolarWinds systems, which then led to the Commerce and Treasury departments falling victim to the intrusions. 

The State Department, Department of Homeland Security and the National Institutes of Health were also impacted in the breach, according to The Washington Post, and the list is growing. 

ADVERTISEMENT

“Our Committees are seeking information related to the apparent, widespread compromise of multiple federal government, critical infrastructure, and private sector information technology networks,” the chairs wrote in a letter to the leaders of the FBI, Director of National Intelligence (DNI) and the Department of Homeland Security (DHS).

“While investigations and technical forensic analyses are still ongoing, based on preliminary reporting, it is evident that this latest cyber intrusion could have potentially devasting consequences for U.S. national security,” it reads.

Some reports have suggested that hackers working for Russia were monitoring the email traffic at Treasury and Commerce departments. Moscow has denied involvement in the intrusions.

DHS’s Cybersecurity and Infrastructure Security Agency (CISA) issued a rare emergency directive this week that orders federal agencies to “disconnect or power down SolarWinds Orion products … from their network[s].”  

The full impact of the hack is still being assessed.  

ADVERTISEMENT

The two committees are asking FBI Director Christopher Wray, DNI John RatcliffeJohn Lee RatcliffeOvernight Defense: Top US general meets with Taliban | House panel launches probe into cyberattack | Army to issue face masks for soldiers in 2021 House panels launch probe into massive cyberattack that breached federal agencies Republicans press FBI for briefing on efforts by Chinese government operatives to gain influence with lawmakers MORE and acting Homeland Security Secretary Chad WolfChad WolfOvernight Defense: Top US general meets with Taliban | House panel launches probe into cyberattack | Army to issue face masks for soldiers in 2021 House panels launch probe into massive cyberattack that breached federal agencies White House counsel’s office advised Trump against firing FBI director: report MORE for a classified briefing on Friday about the hack and the extent of its fallout. 

FireEye, a major cybersecurity firm, was also hacked and it uncovered, through its own probe, that SolarWinds was hit in the intrusion.

SolarWinds, which makes network management software, represents a long list of big-name clients, from the White House and various federal agencies, to major banks and Fortune 500 companies.