• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Resources
  • Podcasts
  • Project of the Week
  • About Us
    SEARCH
IT Infrastructure, Network Security, News

FBI: Software Misconfiguration Led to Weekend Email Hack

A threat actor leveraged a software misconfiguration to send fake emails from the FBI alerting victims of a sophisticated cyberattack.

November 15, 2021 Zachary Comeau Leave a Comment

FBI Email Hack
stock.adobe.com/Kristina Blokhin

If your organization was the recipient of a Saturday morning email purporting to be the FBI informing you that your organization was the victim of a sophisticated cyberattack, you can be rest assured that it was fake and the result of a hack of the agency’s infrastructure.

According to security researchers and the FBI, a threat actor gained temporary access to federal IT infrastructure to send emails to at least 100,000 people. The fake emails place the blame for the fake attack on a legitimate security researcher.

The emails came from a legitimate @ic.fbi.gov FBI email account, but the agency said in a statement that the FBI-operated server was not part of the bureau’s corporate email service, so there was no access or compromise of information on the FBI’s network.

According to the FBI, a software misconfiguration gave a threat actor temporary access to the Law Enforcement Enterprise Portal that it uses to communicate with state and local law enforcement partners.

The FBI says it quickly took the impacted hardware offline after discovering the issue.

“No actor was able to access or compromise any data or PII on the FBI’s network,” the agency said in an update Sunday. “Once we learned of the incident, we quickly remediated the software vulnerability, warned partners to disregard the fake emails, and confirmed the integrity of our networks.”

Cybersecurity research firm Spamhaus has largely been credited with spotting this first early Saturday morning when the company confirmed via Twitter that the emails—although sent from FBI infrastructure—were fake.

“These fake warning emails are apparently being sent to addresses scraped from ARIN database,” Spamhaus tweeted. “They are causing a lot of disruption because the headers are real, they really are coming from FBI infrastructure. They have no name or contact information in the .sig. Please beware!”

The company told BleepingComputer that at least 100,000 fake emails were sent.

According to a screenshot tweeted by the company, the emails purport to notify the recipient that several of their “virtualized clusters” were exfiltrated in a “sophisticated supply chain attack.”

The email identifies Vinny Troia as the threat actor working with extortion gang TheDarkOverlord. In reality, Troia is a cybersecurity researcher and CEO of Night Lion Security.

Troia’s firm in January published research of TheDarkOverlord, a hacking group that has targeted Disney, Netflix, medical facilities and school districts.

If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!

Tagged With: cyberattack, FBI, IT infrastructure, TheDarkOverlord, Troia

Related Content:

  • Cloud, SASE, Aryaka How the Cloud is Redefining Media Production and…
  • Singlewire Software mass notification interview Singlewire Software on Mass Notification Solutions
  • URI catchbox 1 Catchbox Plus: The Mic Solution That Finally Gave…
  • Engaging virtual meeting with diverse participants discussing creative ideas in a bright office space during daylight hours Diversified Survey: Workplace AV Tech is Falling Short,…

Free downloadable guide you may like:

  • Practical Design Guide for Office SpacesPractical Design Guide for Office Spaces

    Recent Gartner research shows that workers prefer to return to the office for in-person meetings for relevant milestones, as well as for face-to-face time with co-workers. When designing the office spaces — and meeting spaces in particular — enabling that connection between co-workers is crucial. But introducing the right collaboration technology in meeting spaces can […]

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Latest Downloads

Practical Design Guide for Office Spaces
Practical Design Guide for Office Spaces

Recent Gartner research shows that workers prefer to return to the office for in-person meetings for relevant milestones, as well as for face-to-fa...

New Camera Can Transform Your Live Production Workflow
New Camera System Can Transform Your Live Production Workflow

Sony's HXC-FZ90 studio camera system combines flexibility and exceptional image quality with entry-level pricing.

Creating Great User Experience and Ultimate Flexibility with Clickshare

Working and collaborating in any office environment today should be meaningful, as workers today go to office for very specific reasons. When desig...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

AV-iQ

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Contact Us
  • Comment Guidelines
  • RSS Feeds
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!
Emerald Logo
ABOUTCAREERSAUTHORIZED SERVICE PROVIDERSYour Privacy ChoicesTERMS OF USEPRIVACY POLICY

© 2025 Emerald X, LLC. All rights reserved.