InfraGard is alerting its 80,000 members to a hack that occurred of its database of contact information, warning that "the hackers responsible are communicating directly with members through the InfraGard portal online," according to a KrebsOnSecurity article.
"The FBI is aware of a potential false account associated with the InfraGard Portal and is actively looking into this matter," according to an email sent to InfraGard members on December 14. "This is an ongoing situation, and we are not able to provide any additional information at this time. Please do not reply directly to this email. Thank you!"
InfraGard is a partnership between the Federal Bureau of Investigation (FBI) and members of the private sector for the protection of U.S. critical infrastructure.
Brian Krebs reported:
"USDoD said they gained access to the FBI's InfraGard system by applying for a new account using the name, Social Security Number, date of birth, and other personal details of a chief executive officer at a company that was highly likely to be granted InfraGard membership.
The CEO in question—currently the head of a major U.S. financial corporation that has a direct impact on the creditworthiness of most Americans—told KrebsOnSecurity they were never contacted by the FBI seeking to vet an InfraGard application."
No information is available on the InfraGard website at this time, but the site does require member login.
