Select Page

FBI Hacked, Again! Hacker Leaks Data After Agency Failed to Patch Its Site

FBI Hacked, Again! Hacker Leaks Data After Agency Failed to Patch Its Site

It seems like the FBI has been hacked, once again!

A hacker, using Twitter handle CyberZeist, has claimed to have hacked the FBI’s website (fbi.gov) and leaked personal account information of several FBI agents publically.

CyberZeist had initially exposed the flaw on 22 December, giving the FBI time to patch the vulnerability in its website’s code before making the data public.

The hacker exploited a zero-day vulnerability in the Plone CMS, an Open Source Content Management software used by FBI to host its website, and leaked personal data of 155 FBI officials to Pastebin, including their names, passwords, and email accounts.

CyberZeist tweeted multiple screenshots as proof of his claims, showing his unauthorized access to server and database files using a zero-day local file inclusion type vulnerability affecting its python plugins.

Hacker also found that the FBI’s website is hosted on a virtual machine running a customized older version of the open-source FreeBSD operating system.

FBI Hacked, Again! Hacker Leaks Data After Agency Failed to Patch Its Site

According to another tweet, the Plone CMS zero-day exploit is up for sale on an unnamed dark web marketplace.

Not Just FBI, All Sites Using Plone CMS are Vulnerable

The Plone CMS is considered to be one of the most secure CMSes available today and is used by many major websites like Google, and major United States agencies including the FBI and the CIA.

CyberZeist also warned other agencies, including the European Union Agency for Network and Information Security, Intellectual Property Rights Coordination Center, and Amnesty International, which are currently using the Plone CMS that they too are vulnerable to a similar attack.

MUST READ:  12 Simple Steps To Become A Hacker

The hacker also claimed the FBI officials contacted him and requested a copy of the stolen credentials, which they declined to provide.

The FBI authorities have yet to respond to the claims.

This is not the first time CyberZeist claimed to have hacked the FBI website. In 2011, the hacker breached the FBI website as a member of the infamous hacker collective known as “Anonymous.”

 


About The Author

7 Comments

  1. The function features a SEASONED side to the affair named The Beach Soccer Cup which is considered
    to host the hardest opposition of its kind in the united states.

    Reply
  2. Thanks for the auspicious writeup. It if truth be told was once a leisure account it.

    Look complicated to more delivered agreeable from you!
    However, how can we keep up a correspondence?

    Reply
  3. I used to be recommended this blog via my cousin. I am
    not certain whether or not this publish is written by way of him as no one
    else understand such unique about my trouble.
    You’re amazing! Thanks!

    Reply
  4. hello there and thank you for your information – I’ve
    definitely picked up anything new from right here.
    I did however expertise some technical issues using this website, since I experienced to reload the site
    many times previous to I could get it to load correctly. I had been wondering if your web host is OK?

    Not that I’m complaining, but sluggish loading instances times will
    often affect your placement in google and could damage your quality score if ads and
    marketing with Adwords. Anyway I’m adding this RSS to my e-mail and can look
    out for a lot more of your respective fascinating content.
    Ensure that you update this again soon.

    Reply
  5. Your style is so unique in comparison to other folks I’ve reazd stuff from.
    I appreciate you for posting when you have the opportunity,
    Guess I’ll just book mark this site.

    Reply

Leave a reply

Your email address will not be published. Required fields are marked *

Sign up for premium Hacking Tutorials

ADVERTISE

Your ad can be here. Contact us: [email protected]

TNH FORUM

For more Premium Tutorials LIke