Hackers target PDC’s network
State agency says no sensitive information was obtained, changed
OLYMPIA – The state Public Disclosure Commission’s network was breached earlier this month, though officials on Tuesday said no information was compromised.
Michael Smith, chief technology officer for the state agency, said that the agency was notified by the state’s Consolidated Technology Services last week that a virus had hit the network on Aug. 17, but that the actual network incursion occurred Sept. 8.
Smith said that the PDC was told by CTS that the incursion was initially believed to be domestic but may have been done by a foreign government. Smith said no sensitive information was obtained or changed on the system, which contains financial records that are public records. The commission provides public access to information about financing of political campaigns and lobbying activities.
“We believe it was mostly for a reconnaissance mission to identify machines on our network,” Smith said.
However, David Postman, a spokesman for Gov. Jay Inslee, said that there was no evidence of foreign involvement.
“Often it is a possibility that an attack can come from overseas, but in this case we are certain there is no good evidence that this was any foreign government,” Postman said in an emailed response. “There were foreign IP addresses, which is quite common in hacking attacks. This is considered a lower level attack.”
Smith said that CTS was notified of the breach by the FBI, which saw some of the agency’s usernames and passwords on a reputed hacker’s website. Since the agency learned of the hack, Smith said that passwords have been changed, and CTS has been scanning their sites looking for potential points of vulnerability.
Postman said that the hack concerned a single computer application used and that a total of four state agencies had used a similar application.
“As a precaution, we took them down and put up a firewall protection,” he said, but noted that no other agencies had been breached at this point.
The FBI is currently analyzing the breach, Smith said, but, Postman said that the FBI was not involved.
In an email, FBI spokeswoman Ayn Dietrich said she could neither confirm nor deny any investigation but wrote “the public should be assured that the FBI takes seriously cyber intrusions that could compromise national security.”
© Copyright 2013 Associated Press. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.