Infiltration of the systems led to the exfiltration of databases containing inmate and employee data.
More than 320 GB of data has allegedly been compromised from the U.S. Federal Bureau of Prisons, which manages the country's prison system.
Infiltration of the systems has purportedly led to the exfiltration of databases containing inmate and employee data as recent as June 20th, including full names, genders, races, registration numbers, Social Security numbers, medical information, risk factors, prisons, incident reports, statements, release plans, and other information, according to the hackers.
Cybernews reports that additional details regarding the number of people affected by the leak have not been provided, while the bureau has already launched an investigation into the assertions made by the threat actors.
Such information, if proven legitimate, could be damaging to both inmates and prison staff, with the former potentially targeted by other criminals and individuals looking to retaliate. Employees of the Bureau of Prisons could also be subjected to retaliatory attacks using the exposed data.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
