The US government contractor specified what information fell into the hands of hackers.
Acuity, a US government contractor, confirmed that its GitHub repositories were hacked, as a result of which the attackers stole documents. According to the company, the stolen information was "outdated and did not contain confidential data."
Acuity, a technology consulting firm, provides DevSecOps, IT operations modernization, cybersecurity, data analytics, and operations support services to federal customers in the national security field.
The US State Department informed BleepingComputer about the investigation of hacker claims after a cybercriminal under the pseudonym IntelBroker published allegedly stolen data of the US government and military on a hacker forum. For security reasons, the State Department cannot provide details on the nature and scope of the leak.
Acuity confirmed the hacking of the repositories on GitHub and stated that they contain outdated and unclassified information. Immediately after the vulnerability was discovered, the company applied security updates from the software vendor and took measures to eliminate the threat according to the vendor's recommendations.
After conducting its own analysis and investigation with the involvement of third-party information security specialists, Acuity found no evidence of compromising confidential customer data. The company works closely with law enforcement agencies and takes appropriate measures to further protect its operations.
One of the participants in the attack, known as IntelBroker, published records with information belonging to employees of the Department of Justice, the State Department, the NSA and the FBI. The hacker also claims that the stolen files contain secret data from the Five Eyes intelligence alliance.
Another hacker under the pseudonym Sangierro, who is behind the attack, told BleepingComputer that the hack occurred on March 7. According to him, the attackers managed to use a vulnerability on the Acuity CI/CD server to steal GitHub credentials and access private repositories.
IntelBroker is best known for hacking the insurance company DC Health Link, which led to congressional hearings after it disclosed the personal data of members and employees of the US House of Representatives. Another case related to IntelBroker is the hacking of General Electric, in which the hacker stole information about DARPA's military projects, including SQL files, technical documents and strategic reports. Facebook Marketplace, Los Angeles International Airport (LAX) are also victims of the hacker.
Acuity, a US government contractor, confirmed that its GitHub repositories were hacked, as a result of which the attackers stole documents. According to the company, the stolen information was "outdated and did not contain confidential data."
Acuity, a technology consulting firm, provides DevSecOps, IT operations modernization, cybersecurity, data analytics, and operations support services to federal customers in the national security field.
The US State Department informed BleepingComputer about the investigation of hacker claims after a cybercriminal under the pseudonym IntelBroker published allegedly stolen data of the US government and military on a hacker forum. For security reasons, the State Department cannot provide details on the nature and scope of the leak.
Acuity confirmed the hacking of the repositories on GitHub and stated that they contain outdated and unclassified information. Immediately after the vulnerability was discovered, the company applied security updates from the software vendor and took measures to eliminate the threat according to the vendor's recommendations.
After conducting its own analysis and investigation with the involvement of third-party information security specialists, Acuity found no evidence of compromising confidential customer data. The company works closely with law enforcement agencies and takes appropriate measures to further protect its operations.
One of the participants in the attack, known as IntelBroker, published records with information belonging to employees of the Department of Justice, the State Department, the NSA and the FBI. The hacker also claims that the stolen files contain secret data from the Five Eyes intelligence alliance.
Another hacker under the pseudonym Sangierro, who is behind the attack, told BleepingComputer that the hack occurred on March 7. According to him, the attackers managed to use a vulnerability on the Acuity CI/CD server to steal GitHub credentials and access private repositories.
IntelBroker is best known for hacking the insurance company DC Health Link, which led to congressional hearings after it disclosed the personal data of members and employees of the US House of Representatives. Another case related to IntelBroker is the hacking of General Electric, in which the hacker stole information about DARPA's military projects, including SQL files, technical documents and strategic reports. Facebook Marketplace, Los Angeles International Airport (LAX) are also victims of the hacker.
