Fed says internal site breached by hackers, no critical functions affected

WASHINGTON Tue Feb 5, 2013 7:58pm EST

WASHINGTON Feb 5 (Reuters) - The Federal Reserve said on Tuesday that one of its internal websites had been briefly breached by hackers, though no critical functions of the U.S. central bank were affected by the intrusion.

The admission, which raises questions about cyber security at the Fed, follows a claim that hackers linked to the activist group Anonymous had struck the Fed on Sunday, accessing personal information of more than 4,000 U.S. bank executives, which it published on the Web.

"The Federal Reserve system is aware that information was obtained by exploiting a temporary vulnerability in a website vendor product," a Fed spokeswoman said.

"Exposure was fixed shortly after discovery and is no longer an issue. This incident did not affect critical operations of the Federal Reserve system," the spokeswoman said, adding that all individuals effected by the breach had been contacted.

Technology news site ZDNet separately reported that Anonymous appeared to have published information allegedly containing the login information, credentials, internet protocol addresses and contact information of over 4,000 U.S. bankers on Sunday night.

The claim was made via Twitter over an account registered to OpLastResort, which is linked to Anonymous, a loosely organized group of hacker activists who have claimed responsibility for scores of attacks on government and corporate sites over the past several years.

OpLastResort is a campaign that some hackers linked to Anonymous have started to protest government prosecution of computer prodigy Aaron Swartz, who committed suicide on Jan. 11.

The Fed declined to identify which website had been hacked. But information that it provided to bankers indicated that the site, which was not public, was a contact database for banks to use during a natural disaster.

The website's purpose is to allow bank executives to update the Fed if their operations have been flooded or otherwise damaged in a storm or other disaster. That helps the Fed to assess the overall impact of the event on the banking system.

Hackers identifying themselves as Anonymous infiltrated the U.S. Sentencing Commission website late last month to protest the government's treatment of the Swartz case.

Swartz was charged with using the Massachusetts Institute of Technology's computer networks to steal more than 4 million articles from JSTOR, an online archive and journal distribution service. He faced a maximum sentence of 31 years if convicted.

Comments (0)
This discussion is now closed. We welcome comments on our articles for a limited period after their publication.

California state worker Albert Jagow (L) goes over his retirement options with Calpers Retirement Program Specialist JeanAnn Kirkpatrick at the Calpers regional office in Sacramento, California October 21, 2009. Calpers, the largest U.S. public pension fund, manages retirement benefits for more than 1.6 million people, with assets comparable in value to the entire GDP of Israel. The Calpers investment portfolio had a historic drop in value, going from a peak of $250 billion in the fall of 2007 to $167 billion in March 2009, a loss of about a third during that period. It is now around $200 billion. REUTERS/Max Whittaker   (UNITED STATES) - RTXPWOZ

How to get out of debt

Financial adviser Eric Brotman offers strategies for cutting debt from student loans and elder care -- and how to avoid money woes in the first place.  Video