http://www.nextgov.com/cybersecurity/2014/08/exclusive-nuke-regulator-hacked-suspected-foreign-powers/91643/
By Aliya Sternstein
Nextgov.com
August 18, 2014
Nuclear Regulatory Commission computers within the past three years were
successfully hacked by foreigners twice and also by an unidentifiable
individual, according to an internal investigation.
One incident involved emails sent to about 215 NRC employees in "a
logon-credential harvesting attempt," according to an inspector general
report Nextgov obtained through an open-records request.
The phishing emails baited personnel by asking them to verify their user
accounts by clicking a link and logging in. The link really took victims
to "a cloud-based Google spreadsheet."
A dozen NRC personnel took the bait and clicked the link. The IG Cyber
Crime Unit was able to "track the person who set up the spreadsheet to a
foreign country," the report states, without identifying the nation.
[...]
--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/
