Skip to main content

Pentagon: 24,000 military files stolen in cyberattack

the-pentagon-cyber-attackDeputy defense secretary William J. Lynn revealed in a speech on Thursday that the security systems of a defense contractor were breached by hackers back in March, resulting in the loss of 24,000 military files. The hackers are believed to be based outside of the US, though no specific information as to their whereabouts was given.

According to a Huffington Post report, the cyberattack is one of the Pentagon’s biggest ever security breaches.

Lynn called it a “significant concern” that “over the past decade, terabytes of data have been extracted by foreign intruders from corporate networks of defense companies.”

The deputy defense secretary went on to explain that while much of the data taken by intruders is “mundane,” some of it is extremely sensitive, relating to areas such as aircraft, surveillance and satellite communications.

Lynn was outlining the Pentagon’s new cyber strategy, which aims to produce tougher computer networks that can withstand cyberattacks and allow the military to continue to function in an effective manner, even when parts of its set-up have been compromised.

It is the first time such a strategy has been implemented by the Pentagon as it looks at ways to deal with cyberattacks not only from foreign groups and governments looking to obtain sensitive data, but also terrorist groups.

“Current countermeasures have not stopped this outflow of sensitive information,” Lynn also said in his speech, adding: “We need to do more to guard our digital storehouses of design innovation.”

Last month, national security expert Richard Clarke claimed that the Chinese government is systematically attacking the computer networks of the U.S. government.

In late May, hackers were also reported to have gained access to the computer networks of defense contractors Lockheed Martin.

In the same month, White House officials were the victims of an attempt by foreign hackers to trick them into giving over their e-mail passwords. Military personnel were among those targeted. China was blamed for the phishing attack, though the government denied being involved.

Also in May, the Pentagon announced that cyberattacks on US computer systems could be regarded as an act of war, resulting in a possible military response.

Editors' Recommendations

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
No, 1Password wasn’t hacked – here’s what really happened
A person using the 1Password password manager on a laptop while sat on a couch.

Password managers have been struggling with security breaches in recent months, with LastPass suffering a particularly bad hack as a notable example. So when 1Password users got an alert last week saying their Secret Keys and passwords had been changed without their knowledge, they were understandably panicked. Luckily, all was not what it seemed.

That’s because AgileBits, the company behind 1Password, has just explained exactly what went wrong during that event. And while it wasn’t as bad as everyone first thought, it still doesn’t paint AgileBits in a particularly good light.

Read more
This Bing flaw let hackers change search results and steal your files
The new Bing preview screen appears on a Surface Laptop Studio.

A security researcher was recently able to change the top results in Microsoft’s Bing search engine and access any user’s private files, potentially putting millions of users at risk -- and all it took was logging into an unsecured web page.

The exploit was discovered by researcher Hillai Ben-Sasson at their team at Wiz, a cloud security firm. According to Ben-Sasson, it would not only allow an attacker to change Bing search results but would also grant them access to millions of users’ private files and data.

Read more
Hackers used 30,000 computers for record-breaking DDoS attack
An illustration of a grid of devices with one in red, infected device highlighted.

Hackers launched a record-breaking distributed denial of service (DDoS) attack over the weekend, employing a network of botnets to make requests from over 30,000 IP addresses.

While that isn't a big network of computers, the onslaught was able to exceed 71 million requests per second (rps), surpassing the previous record of 46 million rps set in June 2022 by 35%. This is what's known as a volumetric attack that consumes the target website's bandwidth by sending large amounts of data from multiple sources at once.

Read more