Census hit by cyberattack, count unaffected
U.S. Census Bureau computer servers were exploited last year during a cybersecurity attack, but it didn’t involve the 2020 census, and hackers’ attempts to keep access to the system were unsuccessful, according to a watchdog report released Wednesday.
The attack took place in January 2020 on the bureau’s remote access servers.
According to the Office of Inspector General, the Census Bureau missed opportunities to limit its vulnerability to the attack and didn’t discover and report the attack in a timely manner. The statistical agency also failed to keep sufficient system logs, which hindered the investigation, and was using operating system no longer supported by the vendor, the watchdog report said.
The bureau’s firewalls stopped the attacker’s attempts to maintain access to the system through a backdoor, but unauthorized changes were still made, including the creation of user accounts, the report said.