Image credit: US government
The SolarWinds hackers obtained access to the then-head of the US’ Department of Homeland Security and members of the department’s cybersecurity staff, the Associated Press reported.
The DHS confirmed that a “small number” of staff accounts were targeted in the wide-ranging hacking campaign.
The agency said it “no longer sees indicators of compromise on our networks”.
At an earlier Congressional hearing, representative Pat Fallon indicated that a DHS secretary’s email had been hacked, without providing details.
The AP said it was able to identify then-acting DHS secretary Chad Wolf as the official affected.
Wolf declined to comment other than to say he had used multiple email accounts in the role.
The other DHS staff breached included employees involved in hunting cyber-threats from foreign countries, the AP said.
The news agency said it had interviewed more than a dozen current and former US government officials.
US officials have said they believe Russian state-backed hackers were behind the SolarWinds attack, which compromised at least nine US federal agencies and 100 private companies.
General Paul Nakasone, leader of the Pentagon’s cyber-security force, said last week the administration is considering a “range of options” in retaliation.
The administration has also said it is planning an executive order to address “significant gaps” in modernising the federal government’s security.
The order could reportedly also require many software vendors to notify their federal government customers in the event of a cybersecurity breach.
A recently approved US stimulus package includes $650 million (£471m) in funding for the Cybersecurity and Infrastructure Security Agency (CISA), partly intended for SolarWinds remediation efforts.
Another wide-ranging hack affecting Microsoft Exchange servers also began as a state-backed hacking effort launched by China, according to Microsoft, but has largely affected private-sector organisations.
Troubled battery maker Northvolt reportedly considers Chapter 11 bankruptcy protection in the United States as…
Microsoft's cloud business practices are reportedly facing a potential anti-competitive investigation by the FTC
Ilya Lichtenstein sentenced to five years in prison for hacking into a virtual currency exchange…
Target for Elon Musk's lawsuit, hate speech watchdog CCDH, announces its decision to quit X…
Antitrust penalty. European Commission fines Meta a hefty €798m ($843m) for tying Facebook Marketplace to…
Elon Musk continues to provoke the ire of various leaders around the world with his…