The US Department of Homeland Security is investigating a cyberattack on a platform used by federal, state, and local authorities to exchange intelligence and coordinate responses to major events and emergencies.
The affected Homeland Security Information Network, known as HSIN, allows government agencies, law enforcement bodies and other approved partners to securely share sensitive but unclassified information. Hackers reportedly accessed HSIN servers between late May and early June, potentially exposing material exchanged through the platform.
DHS Response
A DHS spokesperson confirmed that the department was investigating a cyber incident involving what it described as a specific, unclassified legacy information-sharing environment.
The department said it immediately isolated the affected systems, addressed the vulnerability and started a comprehensive forensic investigation. DHS declined to provide further details while the investigation remained active.
Scope Remains Unknown
Officials have not disclosed what information the attackers accessed or whether they successfully stole any files.
The identity, affiliation, and motives of those responsible also remain unknown. Reports indicate that the attackers targeted both HSIN servers and a SharePoint system used for collaboration. DHS’s Office of Intelligence and Analysis has carried out a damage assessment.
HSIN supports document sharing, real-time communications, alerts, incident management and coordination between government agencies. Authorities also use it to exchange information about potential threats and people of interest.
National Security Warning
Senator Mark Warner, vice chair of the Senate Intelligence Committee, warned that the breach could affect national security despite HSIN carrying unclassified information.
Warner said the material stored on the platform is highly sensitive and called on DHS and the Department of Justice to determine who carried out the attack, what they accessed, and what steps affected partners should take.
HSIN is currently supporting security coordination for the FIFA World Cup, America250 and other major events. Authorities also used the system to help manage the January 2025 response to the collision between an American Airlines passenger jet and a US Army Black Hawk helicopter near Washington, DC, which killed 67 people.
Previous Data Exposure
This is not the first security problem involving HSIN.
A configuration error in 2023 allowed thousands of unauthorized users to access restricted intelligence stored on the platform. The exposed material included personal information and reports connected to law enforcement surveillance of Americans.
The earlier incident resulted from a contractor’s coding error that made information intended for a limited group available more widely across the network.
Federal Security Concerns
The latest attack adds to scrutiny of the US government’s ability to protect its systems following staffing cuts across federal agencies, including DHS and the Cybersecurity and Infrastructure Security Agency.
Other recent incidents have included classified information being discussed through Signal, members of the Department of Government Efficiency accessing federal databases containing Americans’ personal information and a CISA contractor publicly exposing passwords, cloud keys, and other credentials.
Earlier this year, the FBI also notified Congress of a major cyber incident involving a sensitive surveillance system. That breach may have exposed the phone numbers of people monitored by federal agents, potentially giving those targets an advantage.
Stay Connected with ProPakistani
Get the latest tech news, telecom insights, and product launches wherever you prefer.
Add ProPakistani to Preferred Sources and see more of our stories in Google Search and Top Stories.
