View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
June 23, 2020updated 24 Jun 2020 5:42pm

Leaked Docs Reveal FBI Fears over Ransomware Threat to Election Networks

"The actors launched a coordinated attack to gain access to the MSP network one week before an election"

By claudia glover

The FBI remains deeply concerned that ransomware delivered through managed service providers (MSPs) to US government networks could threaten elections, a leaked document reveals.

The May 1 warning was revealed in a batch of hundreds of thousands of police and homeland security documents leaked this week by hacktivist collective Distributed Denial of Secrets (DDoSecrets) in a cache of PDF files, emails and CSV datasets dubbed Blue Leaks.

The document expressed the worry that attacks through MSPs could effect elections even if this was not the actor’s intention:

“The FBI assesses ransomware infections delivered through managed service providers to US and state government networks likely will threaten the availability of data on interconnected election servers, even is this is not the actors’ intention”, one document warns.

The fear is born of experience, as the FBI reveals, pointing to two examples, including one in Oregon that saw 45 servers and 50 desktops at the local authority locked down by the Sodinokibi ransomware in an attack that also crippled short-term back-ups.

The report adds a further example: “Unidentified cyber actors in late 2019 targeted a Louisiana MSP whose clients included the Louisiana Secretary of State and nine Louisiana Clerks of Court offices. […]

“The actors launched a coordinated attack to gain access to the MSP network one week before an election, and a second attack against the Louisiana Sec of State network one week later”.

Inside the BlueLeaks Data

The warning was just one of the files released as part of a 269 gigabyte data leak released on June 19, Emancipation day in the US, just over four weeks after the death of George Floyd.

Content from our partners
An evolving cybersecurity landscape calls for multi-layered defence strategies
An evolving cybersecurity landscape calls for multi-layered defence strategies
Powering AI’s potential: turning promise into reality
Powering AI’s potential: turning promise into reality
Unlocking growth through hybrid cloud: 5 key takeaways
Unlocking growth through hybrid cloud: 5 key takeaways

More on the Leaked Data Here: Huge Data Dump of Police Files Dubbed “Blue Leaks” Leaked Online

Other data found within the cache includes police reports from the last 10 years from over 200 police departments across the US and their dealings with countries such as the UK, Russia Spain and Italy.

The private details of members of US law enforcement agencies are amongst the leaked data, as well as data transfers from Google to the US Police, including name, address and details of Google Wallets.

Other members of the public with details in the dump are allegedly being contacted by those trawling through the leaked data.

Don’t Leave Before You’ve Read This! Microsoft Snaps Up CyberX, as Vendor Appetite for OT Offerings Swells

Topics in this article : , , , , , , ,
Websites in our network
The New Statesman Press Gazette Spears World of Fine wine Elite Traveler Leadmonitor
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU