SolarWinds hackers nailed federal prosecutors' offices, Department of Justice says

Email accounts were breached at nearly 30 US attorneys' offices, the DOJ says, as it provides new details of an attack revealed in December.

Edward Moyer Senior Editor
Edward Moyer is a senior editor at CNET and a many-year veteran of the writing and editing world. He enjoys taking sentences apart and putting them back together. He also likes making them from scratch. ¶ For nearly a quarter of a century, he's edited and written stories about various aspects of the technology world, from the US National Security Agency's controversial spying techniques to historic NASA space missions to 3D-printed works of fine art. Before that, he wrote about movies, musicians, artists and subcultures.
  • Ed was a member of the CNET crew that won a National Magazine Award from the American Society of Magazine Editors for general excellence online. He's also edited pieces that've nabbed prizes from the Society of Professional Journalists and others.
Edward Moyer
2 min read
Sign at the US Department of Justice headquarters in Washington, DC

Hackers had access to email accounts for more than six months, the DOJ says.

Samuel Corum/Getty Images

Hackers hit the offices of top US federal prosecutors nationwide last December, breaking in to email accounts, the Department of Justice said Friday. As part of the SolarWinds hack, according to the agency, attackers accessed accounts at nearly 30 US Attorneys' offices, including offices in Washington, DC; New York and California.

The department revealed in January that its Microsoft Office 365 email environment had been breached, but it hadn't provided the information about the US attorneys.

"The Department of Justice understands that when victims make information public about the nature and scope of computer intrusions they suffered, others can use that information to prepare themselves for the next threat," the DOJ said in a statement Friday. "To encourage transparency and strengthen homeland resilience, today we are providing additional details about the SolarWinds intrusion in December 2020."

The DOJ said at least one employee account was accessed at 27 offices from the West Coast to the East. It said at least 80% of employees at the US attorneys' offices in the Eastern, Northern, Southern and Western Districts of New York had seen their accounts breached, with other districts "impacted to a lesser degree."

The hackers are thought to have had access to breached accounts from about May 7 to Dec. 27, the DOJ said, adding that exposed data included sent, received and stored emails as well as attachments. The agency said in January that it had plugged the breach.

"The Department's objective continues to be mitigating the operational, security, and privacy risks caused by the incident," the DOJ said in its Friday statement.

The SolarWinds hack, which US intelligence agencies say likely originated in Russia, hit customers of IT software provider SolarWinds, including a number of private businesses and federal agencies. Victims included high-level officials at the Department of Homeland Security, showing that not even the government agency in charge of defending the US from foreign hacking attacks was immune.

In April, US President Joe Biden signed an executive order imposing a range of retaliatory measures against Russia. Russia, meanwhile, denied involvement in the hack. In May, Biden signed an executive order aimed at improving US cybersecurity defenses.

The DOJ listed the following US attorneys' offices as having been hit by the email breaches:

-- Central District of California
-- Northern District of California
-- District of Columbia
-- Northern District of Florida
-- Middle District of Florida
-- Southern District of Florida
-- Northern District of Georgia
-- District of Kansas
-- District of Maryland
-- District of Montana
-- District of Nevada
-- District of New Jersey
-- Eastern District of New York
-- Northern District of New York
-- Southern District of New York
-- Western District of New York
-- Eastern District of North Carolina
-- Eastern District of Pennsylvania
-- Middle District of Pennsylvania
-- Western District of Pennsylvania
-- Northern District of Texas
-- Southern District of Texas
-- Western District of Texas
-- District of Vermont
-- Eastern District of Virginia
-- Western District of Virginia
-- Western District of Washington

CNET's Laura Hautala contributed to this report.