D.C. Well being Hyperlink hacker exposes lawmakers' private data

The latest information breach that affected tons of of members and workers on Capitol Hill final week has uncovered delicate data belonging to 21 lawmakers in Congress, CyberScoop reported. 

In keeping with CyberScoop, it was capable of confirm the authenticity of the knowledge belonging to a person in an information set posted on-line by a consumer of a hacking discussion board.

The consumer who uploaded the info reportedly threatened that extra datasets could be launched.

“Extra information exists, however is not going to be leaked in the meanwhile,” the consumer reportedly mentioned. “Using it’s one thing necessary. Multiple database have been (sic) uncovered.” 

Final week, DC Well being Hyperlink, a program that administers well being care plans for members of Congress, suffered a “vital information breach” that impacted members of Congress and their workers.

The Home chief administrative officer (CAO) confirmed to The Hill final week that account information and private identifiable data linked to tons of of Home lawmakers and workers have been stolen.

A CAO spokesperson declined to touch upon CyberScoop’s latest reporting on the matter.

Final Thursday, high home leaders mentioned though the scope of the info breach stays unknown, the scale of the influence “might be extraordinary.”

“At this second, the trigger, measurement and scope of the info breach affecting DC Well being Hyperlink couldn’t be decided by the FBI,” mentioned Home Speaker Kevin McCarthy (R-Calif.) and Home Minority Chief Hakeem Jeffries (D-N.Y.) in a letter to the DC Well being Profit Alternate Authority.

“1000’s of Home Members and workers from throughout the US have enrolled in medical insurance by DC Well being Hyperlink for themselves and their households since 2014,” they added.

The DC Well being Profit Alternate Authority instructed The Hill in an electronic mail that it launched an investigation following the info breach and started working with legislation enforcement and Mandiant, a third-party forensics agency.

The group additionally mentioned that over 56,000 clients have been affected by the breach. 

“We acknowledge the seriousness of this incident and now we have reached out to impacted enrollees to offer three years of free id and credit score monitoring for all three main credit score bureaus,” the group mentioned in an electronic mail.

“Whereas this stays an ongoing investigation, our companies are operating usually and we proceed to function in a state of heightened alert,” it added.

Copyright 2023 Nexstar Media Inc. All rights reserved. This materials will not be printed, broadcast, rewritten, or redistributed.