Michael Taylor
BleepingComputerThe FBI is investigating a data breach affecting U.S. House of Representatives members and staff after their account and personal information was stolen from DC Health Link's servers.
The personal information of House members and their staff was stolen from the servers of DC Health Link, the House health care plan admin.
Impacted U.S. House members were notified of the breach via email by House CAO Catherine L. Szpindor, as first reported by
Henry Rodgers (https://twitter.com/henryrodgersdc)
The stolen information is already up for sale on a hacking forum, with the threat actor (IntelBroker) claiming it contains the information of at least 170,000 individuals.
A sample shows it includes names, dates of birth, addresses, emails, phone numbers, SSNs, and much more.
The threat actor also claims that they've already sold the stolen information of U.S. House members to at least one buyer.
The data breach is currently being investigated by the FBI per House CAO's email.
The Health Benefit Exchange Authority shared the following statement with BleepingComputer about the DC Health Link data breach, confirming our reporting that data was posted online.
infinite_loopy@BleepingComputer Why do they ask for "middleman only"??
0xd34db33f@BleepingComputer I'll call this. The Democrats will have embarrassing things leaked but nothing will come out about Republicans, because they will all be blackmailed