FBI Network Breach Targets Surveillance Systems Hackers have reportedly compromised an FBI network used to manage wiretaps and foreign intelligence surveillance warrants, according to a CNN report citing an anonymous source. The breach was confirmed by an FBI spokesperson, who stated that the bureau detected and addressed "suspicious activities" on its systems, though no further details were provided. The incident marks the latest in a string of high-profile cyberattacks on U.S. government agencies and corporations. Last year, Chinese hackers infiltrated the U.S. Treasury and the National Nuclear Security Administration, while Russian operatives stole sealed court records. Separately, a Chinese state-linked group, Salt Typhoon, breached at least 200 U.S. companies, including major telecommunications providers like AT&T, Verizon, Lumen, Charter Communications, and Windstream. The FBI has not disclosed the extent of the breach or the identity of the attackers, but the incident underscores ongoing cybersecurity threats to critical U.S. infrastructure.

WASHINGTON—Ransomware remains a persistent and costly threat to U.S. financial institutions, with attack activity hitting record levels in 2023 and remaining elevated in 2024, according to a new Financial Trend Analysis from FinCEN. The report, covering incidents from 2022 through 2024, details both the scale of attacks and the tactics most frequently used by ransomware actors. FinCEN found that institutions filed 7,395 ransomware-related Bank Secrecy Act reports tied to more than 4,000 incidents and over $2.1 billion in payments during the three-year period. Activity peaked in 2023, when payments surged to $1.1 billion, a 77% jump from the prior year. Although 2024 saw a decline to about $734 million, FinCEN attributed part of the drop to federal disruptions of major groups such as ALPHV/BlackCat and LockBit. Even so, financial services ranked among the three most targeted sectors, both by number of attacks and total ransom paid. The report underscores that attackers increasingly rely on well-known variants—including ALPHV/BlackCat, LockBit, Akira, and Phobos—and demand payments largely in Bitcoin, which accounted for 97% of reported transactions. Communication between attackers and victims most often occurred through TOR-based channels, with email representing a secondary method. Median ransom payments fluctuated, reaching $175,000 in 2023 before easing to $155,257 in 2024, with most payments falling below $250,000. For financial institutions, FinCEN emphasized that str

The Treasury was targeted in a sophisticated cyber-attack conducted by a group linked to Chinese nationals. This attack, part of a campaign that affected over 100 US organizations, compromised IT systems including management software. The severity of the intrusion led to significant damage, with the Treasury experiencing a breach of sensitive data critical to national security and economic stability. The scope and sophistication of the attack indicate a threat to both internal operations and potentially, broader national interests.