December 14, 2023 at 01:06PM
Attackers breached Idaho National Laboratory’s (INL) Oracle HCM HR management platform, compromising data of 45,047 individuals including employees, dependents, and spouses. The breach included sensitive personal information, such as social security numbers and banking details, but did not affect the lab’s network. A hacking group claimed responsibility and leaked the stolen data. Both CISA and FBI are investigating the incident.
From the meeting notes, it is evident that the Idaho National Laboratory (INL) experienced a significant cybersecurity data breach, affecting over 45,000 individuals. The breach occurred through the cloud-based Oracle HCM HR management platform, impacting various sensitive personally identifiable information (PII) such as names, social security numbers, salary information, and banking details of current and former employees, as well as their dependents and spouses. While investigating the incident, INL confirmed that it only affected the off-site Oracle HCM test environment and did not impact INL’s network or other networks and databases used by employees, lab customers, or other contractors. Additionally, a well-known hacking organization, SiegedSec, claimed responsibility for the attack and leaked the stolen human resources data online, including a wide range of sensitive information.
Furthermore, SiegedSec clarified that they did not attempt to negotiate or demand a ransom from INL; instead, they directly published the leaked information online. The group provided evidence of their access to INL’s systems, including a custom announcement made using INL’s system and screenshots of internal INL tools.
The breach is currently the subject of an ongoing joint investigation by CISA and the FBI. INL is working to assess the full impact of the incident and is emphasizing the need for a thorough investigation to confirm the hacking organization’s involvement. The leaked data poses significant concerns for the affected individuals and their privacy and underscores the importance of implementing robust cybersecurity measures to safeguard sensitive information.
Please let me know if you need any additional information or if there are specific action items to be addressed.