On May 8th, researchers at KrebsOnSecurity discovered that hackers may have gained unauthorized access to a US Drug Enforcement Agency (DEA) portal that taps into 16 different federal law enforcement databases. Researchers believe a threat actor obtained a username and password for an authorized user of esp.usdoj.gov, which is the Law Enforcement Inquiry and Alerts (LEIA) system managed by the DEA. LEIA is connected to several federal law enforcement databases that contain law enforcement sensitive data. Researchers fear that not only have threat actors gained access to sensitive information, but the access may allow them to submit false records to law enforcement and intelligence agency databases. When asked about the breach, DEA declined to comment on the situation and offered the following statement, “DEA takes cyber security and information of intrusions seriously and investigates all such reports to the fullest extent.” Binary Defense analysts will continue to monitor the situation for developments.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security