After claiming not to sell data stolen from the FBI’s critical-infrastructure portal, InfraGard, the hacker has released the data publicly for download.
On December 14th, 2022, HackRead.com reported about a hacker who was selling a database belonging to InfraGard, an FBI-launched security program to develop physical and cyber threat information-sharing collaborations with the private sector.
The database leak came right after pro-Russian hackers from the KillNet group claimed to have infiltrated the FBI’s database, allegedly stealing the personal information of more than 10,000 US federal agents.
The InfraGard hacker, who goes by the handle “USDoD,” was selling the database for $50,000. It contained the contact details and personal information of more than 87,000 members registered with InfraGard.
However, on December 16th, 2022, the same hacker edited their post, announcing that they would no longer be selling the database, citing the harm it would cause to the victims.
“I would like to let you know that this data will no longer be posted for sale and won’t be used in the future. I realised that selling it would cause more harm to everyone than it would benefit me financially.”
Now, without even selling it to any individual, the hacker has made the database available to the public. It appears that they did not feel any guilt for their actions as was previously stated.
Hackread.com can confirm that the InfraGard database is also circulating on several Russian cybercrime forums and Telegram groups. The database in question contained the personal details of the InfraGard members including the following:
- Full names
- Email addresses
- Employment details
- Industry of employment
- Social media USERIDs and more.
Brief History of InfraGard
InfraGard was established in 1996 as a joint initiative of the FBI’s National Infrastructure Protection Center (NIPC) and the Information Systems Security Association (ISSA). InfraGard provides access to secure email systems, secure data storage platforms, web-based vulnerability assessment tools, password management solutions, and other security services.
Additionally, InfraGard offers educational seminars on topics such as cybersecurity best practices and emerging threats. These seminars are open to members of all sectors and help them stay informed about current security trends.
InfraGard also provides resources for identifying potential cybercrime victims or suspicious activities before they become major issues.
Potential Threats to InfraGard Members
The incident is concerning not only because it puts the security of these companies at risk but also because many of its members are federal agencies as well as state and local law enforcement agencies that handle sensitive materials on a regular basis.
With the leaked information in the wrong hands, cyber criminals could take advantage of this vulnerability and use it to gain access to confidential government records or even personal information belonging to members of the public.