A Russian ransomware group gained access to data from federal agencies, including the Energy Department, in an attack that exploited file transfer software to steal and sell back users’ data, U.S. officials said on Thursday.
Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, described the breach as largely “opportunistic” and neither focused on “specific high-valuable information” nor as damaging as previous cyberattacks on U.S. government agencies.
“Although we are very concerned about this campaign, this is not a campaign like SolarWinds that poses a systemic risk,” Ms. Easterly told reporters on Thursday, referring to the massive breach that compromised several U.S. intelligence agencies in 2020.
The Energy Department said on Thursday that records from two entities within the department had been compromised and that it had notified Congress and C.I.S.A. of the breach.