Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds

    July 2, 2026

    Google’s Continued Disruption of Malicious Residential Proxy Networks

    July 2, 2026

    Google loses final appeal to overturn €4.1 billion EU fine

    July 2, 2026
    Facebook X (Twitter) Instagram
    • Demos
    • Technology
    • Gaming
    • Buy Now
    Facebook X (Twitter) Instagram Pinterest Vimeo
    Canadian Cyber WatchCanadian Cyber Watch
    • Home
    • News
    • Alerts
    • Tips
    • Tools
    • Industry
    • Incidents
    • Events
    • Education
    Subscribe
    Canadian Cyber WatchCanadian Cyber Watch
    Home»News»DHS confirms hackers breached HSIN info-sharing platform
    News

    DHS confirms hackers breached HSIN info-sharing platform

    adminBy adminJuly 1, 2026No Comments3 Mins Read
    Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
    Share
    Facebook Twitter LinkedIn Pinterest Email


    DHS

    The Department of Homeland Security is investigating a cyberattack that compromised the Homeland Security Information Network (HSIN), a sensitive information-sharing platform used by federal, state, local, and private-sector partners.

    The intrusion, first reported by Nextgov, was carried out by an unknown threat actor in recent weeks and is believed to have occurred sometime between late May and early June, according to two people familiar with the matter who spoke on the condition of anonymity.

    DHS is currently investigating the attack and has reportedly not attributed it to any specific threat actor or foreign governments. Whether any documents were stolen from the system also remains unclear.

    image

    According to Nextgov’s sources, the threat actors targeted HSIN servers as well as a SharePoint system used for collaboration efforts. The department’s Office of Intelligence and Analysis has since conducted a damage assessment of the breach.

    The Homeland Security Information Network is a DHS platform for sharing sensitive but unclassified information among government, international, and private-sector partners.

    Approved users can use the network to access data, exchange requests with partner agencies, manage operations, coordinate safety and security for planned events, respond to incidents, and share critical information needed to protect their communities.

    The platform supports real-time communication, alerts, and incident management, and is also used to exchange information about persons of interest and potential threats.

    As the United States is currently overseeing security for World Cup games hosted across the country, Nextgov raised concerns that the breach could have exposed security planning, interagency coordination, or response procedures.

    In a statement, a DHS spokesperson confirmed the incident to BleepingComputer while emphasizing that classified systems were not affected.

    “The Department of Homeland Security is aware of a recent cyber incident involving a specific, unclassified legacy information sharing environment,” DHS told BleepingComputer.

    “We immediately took action to isolate the affected systems, mitigate the vulnerability, and launch a comprehensive forensic investigation. There is no indication that classified networks were impacted, and the system remains operational for our partners. As this is an ongoing investigation, we cannot provide further operational details at this time.”

    HSIN previously suffered a security incident in 2023, when an access misconfiguration linked to a contractor’s coding error exposed restricted data within HSIN-Intel, the platform’s intelligence section.

    The error, detailed in an internal DHS memo seen by Wired, set access permissions to “everyone” rather than a limited group of authorized users, exposing information, including sensitive U.S. person data and other personally identifiable information, to all of HSIN’s users.


    article image

    Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.

    The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.

    Get the whitepaper



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Previous ArticleCompanies Are Making Claude and Codex Talk Like Cavemen to Stop AI’s Soaring Costs
    Next Article Infosec News Nuggets — July 1, 2026 – AboutDFIR
    admin
    • Website

    Related Posts

    News

    ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds

    July 2, 2026
    News

    Google’s Continued Disruption of Malicious Residential Proxy Networks

    July 2, 2026
    News

    Google loses final appeal to overturn €4.1 billion EU fine

    July 2, 2026
    Add A Comment

    Comments are closed.

    Demo
    Top Posts

    Catchy & Intriguing

    March 17, 202677 Views

    IP Address Investigations and Local OSINT

    March 20, 202633 Views

    Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

    March 23, 202632 Views
    Stay In Touch
    • Facebook
    • YouTube
    • TikTok
    • WhatsApp
    • Twitter
    • Instagram
    Latest Reviews
    85
    Featured

    Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

    January 15, 2021 Featured
    8.1
    Uncategorized

    A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

    January 15, 2021 Uncategorized
    8.9
    Editor's Picks

    DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

    January 15, 2021 Editor's Picks

    Subscribe to Updates

    Get the latest tech news from FooBar about tech, design and biz.

    Demo
    Most Popular

    Catchy & Intriguing

    March 17, 202677 Views

    IP Address Investigations and Local OSINT

    March 20, 202633 Views

    Defending Canada’s Digital Frontier: Combating Phishing, Social Engineering, Ransomware, and Malware

    March 23, 202632 Views
    Our Picks

    ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds

    July 2, 2026

    Google’s Continued Disruption of Malicious Residential Proxy Networks

    July 2, 2026

    Google loses final appeal to overturn €4.1 billion EU fine

    July 2, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Facebook X (Twitter) Instagram Pinterest
    • Home
    • Technology
    • Gaming
    • Phones
    • Buy Now
    © 2026 ThemeSphere. Designed by ThemeSphere.

    Type above and press Enter to search. Press Esc to cancel.