The FBI appears to have been used as a pawn in a conflict between hackers and security researchers. In accordance with Bleeping Computer, το FBI επιβεβαίωσε ότι εισβολείς παραβίασαν τους διακομιστές email του στις 13 Νοεμβρίου για να στείλουν ψεύτικα μηνύματα που υποστήριζαν ότι οι παραλήπτες ήταν θύματα hacking και leakageof data.
The emails tried to blame the non-existent attacks on Vinny Troia, the founder of security companies on the dark web NightLion and Shadowbyte.
The non-profit intelligence agency Spamhaus quickly shed light on the fake messages. The attackers used legitimate FBI systems to carry out the attack, using email addresses contained in a database from the American Registry of Internet Numbers (ARIN by the American Registry for Internet Numbers). So over 100.000 addresses received fake emails in at least two waves.
The FBI described the hack as an "ongoing situation" and initially did not provide further details. Ask email recipients to report these messages to the Cybercrime Complaint Center (Internet Crime Complaint Center) of herserviceor in the Cyber Security and Infrastructure Security department (Cybersecurity and Infrastructure Security Agency). Troia told Bleeping Computer that he believes the perpetrators may be linked to "Pompomourin", a person who has been attacked in the past.
Disputes between hackers and the security community are nothing new. In March, attackers carried out exploits on its servers Microsoft Exchange tried to get the security reporter involved Brian Krebs using a fake domain.
However, it is rare that they actually use it domains, and even from a government agency like the FBI. This method of course seems to be much more effective since the FBI is still inundated with calls from sysadmins.
