This is not good news at all.
There is a claim that the US Army, Navy, and major defense contractors — Lockheed Martin, Boeing, and Honeywell — have hundreds of computers with active infostealer infections:
For years, the U.S. military and its defense contractors have been considered the gold standard of security — equipped with multi-billion-dollar budgets, classified intelligence networks, and the world’s most advanced cybersecurity measures.
Yet, Global Infostealing Malware Data from Hudson Rock reveals an unsettling reality:
- Employees at major defense contractors — including Lockheed Martin, Boeing, and Honeywell — have been infected by Infostealer malware.
- U.S. Army and Navy personnel had their login details stolen — exposing VPN access, email systems, and classified procurement portals.
- Even the FBI and Government Accountability Office (GAO) have active infections, exposing investigative and cybersecurity personnel.
Each one of these infected employees is a real person — it could be an engineer working on military AI systems, a procurement officer managing classified contracts, a defense analyst with access to mission-critical intelligence.
At some point, these employees downloaded malware on a device they used for work, exposing not just their credentials, but potentially their entire digital footprint: browsing history, autofill data, internal documents, and session cookies for sensitive applications.
And if these organizations — the backbone of U.S. national security — are infected, what does that say about their ability to defend against more sophisticated attacks?
That’s really not good at all. Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 had the following comment:
“The Infostealer is a secondary problem. The real question is how the infostealers are getting on military computers in the first place. Was it social engineering (most common), unpatched software or firmware (second most likely cause), or something else? Either way, the method used to allow the infostealer to gain initial access can be used by bad people to do anything. Adversarial spies, like Russia or China, could gain access. Ransomware taking down the infrastructure could be launched. If the involved department doesn’t take care of how the infostealer is gaining initial access, they are going to have far greater problems than just stolen passwords.”
Needless to say, someone needs to figure out how the bad guys got in so that something like this doesn’t happen again. Because this is not just bad, it’s the worst possible scenario that I can think of based on who the targets apparently are.
Related
This entry was posted on February 19, 2025 at 12:01 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
US military and defense contractors systems found to be containing infostealing malware
This is not good news at all.
There is a claim that the US Army, Navy, and major defense contractors — Lockheed Martin, Boeing, and Honeywell — have hundreds of computers with active infostealer infections:
For years, the U.S. military and its defense contractors have been considered the gold standard of security — equipped with multi-billion-dollar budgets, classified intelligence networks, and the world’s most advanced cybersecurity measures.
Yet, Global Infostealing Malware Data from Hudson Rock reveals an unsettling reality:
Each one of these infected employees is a real person — it could be an engineer working on military AI systems, a procurement officer managing classified contracts, a defense analyst with access to mission-critical intelligence.
At some point, these employees downloaded malware on a device they used for work, exposing not just their credentials, but potentially their entire digital footprint: browsing history, autofill data, internal documents, and session cookies for sensitive applications.
And if these organizations — the backbone of U.S. national security — are infected, what does that say about their ability to defend against more sophisticated attacks?
That’s really not good at all. Roger Grimes, Data-Driven Defense Evangelist at KnowBe4 had the following comment:
“The Infostealer is a secondary problem. The real question is how the infostealers are getting on military computers in the first place. Was it social engineering (most common), unpatched software or firmware (second most likely cause), or something else? Either way, the method used to allow the infostealer to gain initial access can be used by bad people to do anything. Adversarial spies, like Russia or China, could gain access. Ransomware taking down the infrastructure could be launched. If the involved department doesn’t take care of how the infostealer is gaining initial access, they are going to have far greater problems than just stolen passwords.”
Needless to say, someone needs to figure out how the bad guys got in so that something like this doesn’t happen again. Because this is not just bad, it’s the worst possible scenario that I can think of based on who the targets apparently are.
Share this:
Like this:
Related
This entry was posted on February 19, 2025 at 12:01 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.