Various additional federal agencies have confirmed that they were among the targets of the hackers behind the compromise of SolarWinds’ Orion software. The US Department of Justice reports that the hackers moved across its internal network and accessed the email accounts of “around” 3% of its employees, but not any classified systems. The federal judiciary’s electronic case management and filing system suffered “an apparent compromise,” according to the Administrative Office of the U.S. Courts.
Other federal agencies previously reporting that they were impacted include:
- Department of the Treasury
- Department of Commerce’s National Telecommunications and Information Administration
- Department of Health’s National Institutes of Health
- Cybersecurity and Infrastructure Agency
- Department of Homeland Security
- Department of State
- National Nuclear Security Administration
- Department of Energy
Sources:
- CyberScoop: Federal Courts are Latest Apparent Victim of SolarWinds Hack
- CyberScoop: Justice Department Confirms SolarWinds Hackers Accessed Department Emails
- Federal Computer Week: DOJ Says it was Hit by SolarWinds Hackers
- ZDNet: SolarWinds Fallout: DOJ says Hackers Accessed its Microsoft O365 Email Server