Idaho National Nuclear Lab Targeted in Major Data Breach

The Idaho National Laboratory, one of the 17 national labs in the US Department of Energy complex, suffered a major data breach on Nov. 19, leaking a host of information, including employee addresses, Social Security numbers, bank account information, full names, employee information, and dates of birth. The lab employs over 6,100 researchers who focus on nuclear research, renewable energy systems, and security solutions. The breach affected the laboratory's Oracle HCM system servers which, according to INL media spokesperson Lori McNamara, "Supports its Human Resources applications." The INL is now coordinating with the FBI as well as the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency to launch an investigation and determine the scope and impact of the breach. On Nov. 20, SiegedSecclaimed responsibility over the attack in an announcement on hacking forums and leaked the stolen information, including what it claims is "Hundreds of thousands of user, employee, and citizen data." The group also allegedly posted screenshots of internal INL tools to provide proof of the breach on Telegram. "Although media surrounding this event claims that no nuclear secrets, intellectual property or R&D information was accessed or stolen, which is fortunate, it is nonetheless highly disconcerting that the staff generating that intellectual property and participating in the most advanced Nuclear Energy R&D have had their information leaked online," stated Colin Little, security engineer at Centripetal, in an email. "[N]ow those who are politically motivated and would very much like to know the names and addresses of the top Nuclear Energy researchers in the US have that data as well. According to its spokesperson, the INL is still gathering information and will be in further communication with its employees as soon as possible.

This Cyber News was published on www.darkreading.com. Publication date: Thu, 30 Nov 2023 20:25:02 +0000


Cyber News related to Idaho National Nuclear Lab Targeted in Major Data Breach

Hacktivists breach U.S. nuclear research lab, steal employee data - The Idaho National Laboratory confirms they suffered a cyberattack after 'SiegedSec' hacktivists leaked stolen human resources data online. INL is a nuclear research center run by the U.S. Department of Energy that employs 5,700 specialists in atomic ...
11 months ago Bleepingcomputer.com
Idaho National Nuclear Lab Targeted in Major Data Breach - The Idaho National Laboratory, one of the 17 national labs in the US Department of Energy complex, suffered a major data breach on Nov. 19, leaking a host of information, including employee addresses, Social Security numbers, bank account ...
11 months ago Darkreading.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
1 month ago Aws.amazon.com
US Cybersecurity Lab Suffers Major Data Breach - A leading US laboratory famed for cybersecurity, nuclear and clean energy research has reportedly suffered a major breach of employee data. Dating back to the 1940s, Idaho National Laboratory is responsible for generating the first usable electricity ...
11 months ago Infosecurity-magazine.com
U.S. nuclear research lab data breach impacts 45,000 people - The Idaho National Laboratory confirmed that attackers stole the personal information of more than 45,000 individuals after breaching its cloud-based Oracle HCM HR management platform last month. INL is one of 17 U.S. Department of Energy's national ...
11 months ago Bleepingcomputer.com
Tech Security Year in Review - In this Tech Security Year in Review for 2023, let's look into the top data breaches of the past year. Each factor contributes to the growing threatscape, demanding a proactive and adaptable cybersecurity approach to safeguard your organization ...
10 months ago Securityboulevard.com
A Gigantic New ICBM Will Take US Nuclear Missiles Out of the Cold War-Era but Add 21st-Century Risks - Cybersecurity for the software-driven Sentinel nuclear missile has been a top focus of the program. Those underground capsules are about to be demolished and the missile silos they control will be completely overhauled. A new nuclear missile is ...
11 months ago Securityweek.com
Over 45,000 Employees Hit By Nuclear Research Lab Breach - Tens of thousands of current and former employees of a leading US cybersecurity and nuclear research laboratory were impacted by a major data breach discovered in November, it has been revealed. The Idaho National Laboratory said in an updated notice ...
11 months ago Infosecurity-magazine.com
Data Breach Response: A Step-by-Step Guide - In today's interconnected world, organizations must be prepared to respond swiftly and effectively in the face of a data breach. To navigate these challenges, a well-defined and comprehensive data breach response plan is essential. Let's explore the ...
9 months ago Securityzap.com
More than 45,000 affected by cyberattack on Idaho nuclear research lab - The information of more than 45,000 people was leaked because of a cyberattack late last month at a federally run nuclear research lab. The prominent U.S. Department of Energy nuclear research lab, based near Idaho Falls, is known for groundbreaking ...
11 months ago Therecord.media
Sellafield nuclear site hacked by groups linked to Russia and China - The UK's most hazardous nuclear site, Sellafield, has been hacked into by cyber groups closely linked to Russia and China, the Guardian can reveal. Sources said breaches were first detected as far back as 2015, when experts realised sleeper malware - ...
11 months ago Theguardian.com
Fewer cybersecurity professionals losing their jobs in breach 'blame' game - Cybersecurity job loss after a major incident is becoming less likely as organizations drop the "Blame" game for more practical approaches to breach prevention, a survey of 500 CISOs shows. More than 95% of CISOs reported their teams received greater ...
11 months ago Scmagazine.com
Goto Customers Backup Data Breach: Protect Your Business and Handle Data Breach Risks - A data breach at Goto customers exposed their backup data to malicious actors, leading to a data breach that impacted those customers. Businesses need to be aware of the risks associated with data breaches and how to protect their organisations from ...
1 year ago Securityaffairs.com
A Plan to Protect Critical Infrastructure from 21st Century Threats - On April 30th, the White House released National Security Memorandum-22 on Critical Infrastructure Security and Resilience, which updates national policy on how the U.S. government protects and secures critical infrastructure from cyber and ...
5 months ago Cisa.gov
Welltok data breach exposes data of 8.5 million US patients - Healthcare SaaS provider Welltok is warning that a data breach exposed the personal data of nearly 8.5 million patients in the U.S. after a file transfer program used by the company was hacked in a data theft attack. Welltok works with health service ...
11 months ago Bleepingcomputer.com
Discover the Consequences of a Data Breach - The average price of a data breach internationally in 2023 turned to $4.45 million, a 15% rise in the simplest three years that underscored the increasing financial strain on businesses. A minor oversight can lead to a major data breach if not ...
10 months ago Securityboulevard.com
How Can Data Breach Be A Trouble For Your Industry? - To navigate an era of cyber risks, this unsettling reality necessitates a renewed focus on data integrity protection and digital asset protection. In this blog, we will discuss a data breach in the Hospitality industry. Some of the companies like MGM ...
10 months ago Securityboulevard.com
Welltok Data Breach: 8.5M US Patients' Information Exposed - In a recent cybersecurity incident, Welltok, a leading healthcare Software as a Service provider, reported unauthorized access to its MOVEit Transfer server, affecting the personal information of approximately 8.5 million patients in the United ...
11 months ago Securityboulevard.com
Yakult Australia confirms 'cyber incident' after 95 GB data leak - Both the company's Australian and New Zealand IT systems have been affected. Cybercrime actor DragonForce which claimed responsibility for the attack has also leaked 95 GB of data that it states, belongs to the company. Invented in 1935 in Japan and ...
10 months ago Bleepingcomputer.com
Britain says no evidence of Sellafield nuclear site hacking - LONDON, Dec 4 - Britain has no records or evidence to suggest that networks at the Sellafield nuclear site were the victim of a successful cyber attack by state actors, the government said on Monday following a report by the Guardian newspaper. The ...
11 months ago Reuters.com
AvidXchange Notifies Consumers of Data Breach Following Period of Unauthorized Access - On October 13, 2023, AvidXchange, Inc. filed a notice of data breach with the Attorney General of Massachusetts after discovering that a recent cybersecurity event resulted in an unauthorized party being able to access the company's IT network. In ...
11 months ago Jdsupra.com
Dutch Engineer Used Water Pump to Get Billion-Dollar Stuxnet Malware Into Iranian Nuclear Facility: Report - A Dutch engineer recruited by the country's intelligence services used a water pump to deploy the now-infamous Stuxnet malware in an Iranian nuclear facility, according to a two-year investigation conducted by Dutch newspaper De Volkskrant. Stuxnet, ...
10 months ago Securityweek.com
Experts from the United Nations Report North Korean Hackers Have Taken a Large Amount of Digital Assets - Last year, North Korean hackers working for the government stole a record-breaking amount of virtual assets estimated to be worth between $630 million and more than $1 billion, according to a new report from U.N. experts. The panel of experts said ...
1 year ago Securityweek.com
Akumin Files Notice of Data Breach with the Securities and Exchange Commission - On October 16, 2023, Akumin Inc. filed a notice of data breach with the Securities and Exchange Commission after discovering that it had been the recent victim of a ransomware attack. In this notice, Akumin explains that the incident resulted in an ...
11 months ago Jdsupra.com
PennyMac Files Notice of Data Breach That Leaked Thousands of SSNs - On October 19, 2023, PennyMac Loan Services LLC filed a notice of data breach with the Attorney General of Texas after discovering that unauthorized actors were able to access information that had been entrusted to the company. In this notice, ...
11 months ago Jdsupra.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)