Exploit: Unauthorized Systems Access
Nuclear Regulatory Authority: Government Agency
Risk to Small Business: 2.771 = Moderate
In a small but troubling incident at NRA, an unauthorized intruder gained access to the email system and the agency was forced to shut it down. The incursion affected both internal and external communications, snarling applications for hearings and impacting other business. Communications are limited to phone calls and in-person meetings. No data was stolen and access to any operations or research systems is through a separate, more secure system.
Individual Risk: No individual information was reported as impacted in this incident.
Customers Impacted: Unknown
How it Could Affect Your Customers’ Business: Adding extra protections for sensitive systems and data is a smart move, especially when those systems and data can impact public welfare.
Source:
https://securityaffairs.co/wordpress/110284/hacking/nuclear-regulation-authority-cyber-attack.html