Hackers Dox FBI, DHS Officials

In a significant cybersecurity incident, hackers affiliated with the group “Scattered LAPSUS$ Hunters” have released the personal phone numbers and addresses of hundreds of U.S. government law enforcement officials. The breach, which affected major federal agencies including the Department of Homeland Security (DHS), Immigration and Customs Enforcement (ICE), the Federal Bureau of Investigation (FBI), and the Department of Justice (DOJ), represents a serious escalation in attacks against government personnel.

The Doxxing Attack

According to reporting by 404 Media’s Joseph Cox, published on October 16, 2025, Scattered LAPSUS$ Hunters posted what appears to be genuine personal contact information for government officials. The group, described as “one of the latest amalgamations of typically young, reckless, and English-speaking hackers,” specifically targeted nearly 700 DHS officials in addition to personnel from other federal agencies.

This incident follows a pattern of increasing cybersecurity threats against government personnel. DHS has reported a more than 1000% increase in assaults against their officers and their families, with officials being doxxed and threatened online. The brazen nature of this attack, exposing personal information of law enforcement personnel, raises significant concerns about both personal and national security.

Targeted Agencies and Impact

Department of Homeland Security (DHS)

The DHS appears to have been the hardest hit agency, with approximately 700 officials having their personal information compromised. This represents a substantial portion of the agency’s workforce and creates security concerns for a department that plays a central role in administering the U.S. immigration system and protecting the homeland.

Other Federal Agencies

  • Immigration and Customs Enforcement (ICE): As part of DHS, ICE officials were also targeted, potentially exposing agents who work on immigration enforcement and customs issues.
  • Federal Bureau of Investigation (FBI): Compromised personal information of FBI personnel could impact ongoing investigations and operations.
  • Department of Justice (DOJ): Exposure of DOJ officials’ personal information could affect the judicial process and ongoing legal proceedings.

Security Implications

The leak of personal contact information raises grave concerns regarding:

  1. Personal Safety: Exposing home addresses and phone numbers puts officials and their families at direct risk for harassment, intimidation, or worse.
  2. Operational Security: Compromised personal information can be used to track officials’ movements and activities, potentially jeopardizing sensitive operations.
  3. National Security: When law enforcement and justice officials are targeted, it can impact the broader security infrastructure of the nation.

The Cybersecurity and Infrastructure Security Agency (CISA) has published guidance on cybersecurity information sharing that emphasizes the need to protect information systems from threats while limiting effects on privacy and civil liberties. This incident highlights the critical importance of implementing these guidelines for protecting government personnel.

About Scattered LAPSUS$ Hunters

The Scattered LAPSUS$ Hunters appear to be a newer amalgamation combining elements of several known hacking groups including Scattered Spider, LAPSUS$, and ShinyHunters. LAPSUS$ itself has a history of high-profile cyberattacks dating back to December 2021 when they first targeted the Brazilian Health Ministry’s systems.

Previous targets of LAPSUS$ and related groups have included major corporations such as Microsoft, Okta, NVIDIA, Samsung, and Vodafone. The Cyber Safety Review Board found that LAPSUS$ typically used simple techniques, like stealing cell phone numbers and phishing employees, to gain access to companies and their proprietary data.

Historical Context and Precedents

This incident is part of a growing trend of doxxing attacks against government personnel. There have been previous cases of ICE officers being doxxed by activist groups, with DHS stating they would “prosecute those who dox ICE agents to the fullest extent of the law.” The increase in such incidents suggests a troubling pattern of targeting law enforcement officials that extends beyond this single event.

Government officials, including Homeland Security Secretary Kristi Noem, have previously commented on the dangers posed by doxxing, emphasizing that such actions help criminal organizations rather than serving the public interest.

Public Reaction and Discourse

Given the sensitive nature of exposing federal agents’ data, this incident is expected to generate significant discussion within online communities, particularly in technology and cybersecurity forums. The exposure of government personnel information is likely to prompt debates about:

  • Government cybersecurity infrastructure and protection measures
  • The responsibility of media organizations in reporting such incidents
  • The broader implications of hacktivism and information exposure
  • Protection of government employees and their families

Protecting Government Personnel

CISA provides resources and guidelines to help protect government infrastructure and personnel from cybersecurity threats. Their approach to cybersecurity emphasizes both protecting systems from threats and maintaining operational capabilities. Federal agencies should:

  1. Implement robust personnel information protection measures
  2. Provide cybersecurity training for employees
  3. Establish protocols for responding to security breaches
  4. Coordinate with law enforcement to identify and prosecute perpetrators

Conclusion

The doxxing of hundreds of DHS, ICE, FBI, and DOJ officials by Scattered LAPSUS$ Hunters represents a serious challenge to the personal security of government personnel and the operational integrity of federal agencies. This incident underscores the need for improved cybersecurity measures to protect sensitive personnel information and highlights the evolving threat landscape facing government institutions.

As cybersecurity threats continue to evolve, it’s imperative that both government agencies and private organizations remain vigilant in protecting personal information and implementing best practices for information security.

Sources

404 Media – Hackers Dox Hundreds of DHS, ICE, FBI, and DOJ Officials

U.S. Department of Homeland Security

Cybersecurity and Infrastructure Security Agency (CISA)

Posted

in

by

jbcho

Tags:

, , , , , , , , ,

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *