The FBI appears to have been used as a pawn in a conflict between hackers and investigators security. Σύμφωνα με το Bleeping Computer, το FBI επιβεβαίωσε ότι εισβολείς παραβίασαν τους διακομιστές email του στις 13 Νοεμβρίου για να στείλουν ψεύτικα μηνύματα που υποστήριζαν ότι οι παραλήπτες ήταν θύματα hacking and data leakage.
The emails tried to blame the non-existent attacks on Vinny Troia, the founder of security companies on the dark web NightLion and Shadowbyte.
The non-profit intelligence organization Spamhaus was quick to shed light on the fake messages. The attackers used legitimate FBI systems to carry out the attack, χρησιμοποιώντας διευθύνσεις email που υπήρχαν σε μια βάση δεδομένων από το Αμερικανικό Μητρώο για Αριθμούς Διαδικτύου (ARIN από το American Registry for Internet Numbers). So over 100.000 addresses received fake emails in at least two waves.
The FBI described the hack as an "ongoing situation" and initially did not provide further details. Ask email recipients to report these messages to the Cybercrime Complaint Center (Internet Crime Complaint Center) of the service or in the Department of Cybersecurity and Infrastructure Security (Cybersecurity and Infrastructure Security Agency). Troia told Bleeping Computer that he believes the perpetrators may be linked to "Pompomourin", a person who has been attacked in the past.
Disputes between hackers and the security community are nothing new. In March, attackers carried out exploits on its servers Microsoft Exchange tried to get the security reporter involved Brian Krebs using a fake domain.
However, it is rare for them to actually use domains, even from a government agency such as the FBI. This method, of course, seems to be much more effective, as the FBI is still flooded with calls from system administrators.
