Leading lawmakers said on Tuesday they were concerned that they had been kept in the dark about Russian hackers stealing them from the federal government and pressed Biden administration officials for more information about the form of the SolarWind hack What is known in
In the letter to top officials, censors Gary Peters and Rob Portman said recent reporting by the Associated Press raised the possibility of disturbing that some federal agencies did not fully “report the extent of congressional violations.”
“Time and again this committee has discussed the challenges of defending against sophisticated, well-resurrected, and patient cyber opponents. Nevertheless, despite the fact that despite significant investments in cybersecurity, the federal government did not initially detect this cyber attack, “the senators wrote. Peters, a Democrat from Michigan, Senate Homeland Security and Governmental Affairs Committee in Ohio .Portman. Is the top Republican.
The AP reported last month that suspected Russian hackers gained access to the email accounts of Trump administration’s acting homeland security secretary, Chad Wolf, and members of his department’s cybersecurity staff, whose jobs included hunting threats from foreign countries.
It has been nearly four months since they were discovered by authorities, which they describe broadly, as a months-long cyberspace effort through a hack of widely used software from Texas-based SolarWinds Inc., Homeland Security At least nine federal agencies, including the department, were hacked along with dozens of private-sector companies.
The senators sent their letters to Brandon Wells, acting director of the Cyberspace and Infrastructure Security Agency at DHS, and Christopher DeRusha, chief information security officer at the Office of Management and Budget.
The senators are demanding a number of documents related to the hack, including those stating that individual accounts were targeted or compromised.
Cyber Security Agency spokesman Scott McConnell said it “does not comment on congressional correspondence.” OMB did not immediately return a request for comment.
Anne Neuberger, deputy national security adviser, said in an interview last week with The Associated Press that there were “gaps” in basic cyber security anthems on some of the nine agencies affected, hampering officials ‘ability to determine hackers’ access. Let’s put it.
She As a result of a review of how the SolarWind hack occurred, the administration has identified five essential modernizations, including the need to use technology and continuously monitor for malicious activity and greater use of multi-factor authentication, So that the system cannot access it with a stolen password. alone.
The Biden administration has tried to keep a tight lid on the scope of the Solar Winds attack as it weighs counter-measures against Russia. But an investigation by AP found new details about the breach from other agencies, including DHS and the Department of Energy, where hackers accessed the top officials’ program.
The AP interviewed more than a dozen current and former US government officials who spoke on condition of anonymity due to the confidential nature of the ongoing investigation into the hack.