The Democratic National Committee (DNC) was alerted this week to an attack attempt on its voter database, CNN reports.
Cloud service provider and security firm Lookout reported to the DNC that a phony login page spoofing Votebuilder, a service used by party officials and campaigns, had been discovered attempting to grab usernames and passwords to the database. DNC officials then contacted the FBI.
According to CNN, a Democratic source told the media site that it's unclear who is behind the attack just yet, and that there's no indication that voter file was hacked by the attackers.
Lookout said in a statement shared with Dark Reading that it detected the custom phishing kit being used on a phishing site hosted by cloud computing provider DigitalOcean. "After notifying the hosting provider the phishing site was then taken down by DigitalOcean within hours. As that investigation progressed, our VP of Security Intelligence, Mike Murray, reached out to DNC, NGP VAN, and DigitalOcean to initiate the response process and start the investigation," the company said.
Read more here.
Learn from the industry's most knowledgeable CISOs and IT security experts in a setting that is conducive to interaction and conversation. Early bird rate ends August 31. Click for more info.