A group of hackers managed to access government networks by combining VPN and Windows bugs. They were able to access both the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), who published a joint statement regarding the attack on Friday.
It appears that the attack targetted federal and state, local, tribal, and territorial (SLTT) government networks. There have also been alerts that there have been attacks against non-government networks, according to two agencies. The joint security alert from the CISA and FBI said “CISA is aware of some instances where this activity resulted in unauthorized access to elections support systems; however, CISA has no evidence to date that integrity of elections data has been compromised”. It went on to say that “although it does not appear these targets are being selected because of their proximity to elections information, there may be some risk to elections information housed on government networks.”