 "Hackers leak documents from US Pentagon's IT provider Leidos, probe begins")
By Charles Gorrivan
Hackers have leaked internal documents stolen from Leidos Holdings Inc., one of the largest IT services providers to the US government, according to a person familiar with the matter.
Leidos recently learned of the issue and believes the documents were stolen in a previously disclosed breach of a Diligent Corp. system it used, said the person, who asked not to be identified because the information isn’t public. Leidos is investigating the issue, the person added.
Shares in the IT services firm fell more than 4 per cent in after-hours trading before largely erasing losses. The stock has gained over 40 per cent this year. Its customers include the Defence Department, the Department of Homeland Security and NASA, among other US and foreign agencies and commercial businesses. The IT services firm used the Diligent system to host information gathered in internal investigations, according to a June 2023 filing in Massachusetts.
“We have confirmed that this stems from a previous incident affecting a third-party vendor for which all necessary notifications were made in 2023,” a Leidos spokesperson said. “This incident did not affect our network or any sensitive customer data.”
The Pentagon, the Department of Homeland Security and NASA didn’t immediately respond to requests for comment. Bloomberg News reviewed some files that were purportedly from Leidos on a cybercrime forum, but details were redacted and Bloomberg couldn’t verify their authenticity.
A Diligent spokesperson said the leak appeared to be from a 2022 hack affecting its subsidiary business Steele Compliance Solutions, which it acquired in 2021. Fewer than 15 customers, including Leidos, used the product at the time, they added.
“We promptly notified impacted customers, including Leidos which Diligent initially notified in November 2022, and took immediate corrective action to contain the incident,” the spokesperson said.
The documents were believed to have been stolen as part of two breaches of Diligent in 2022, according to filings.
Leidos was formed in 2013 and later acquired Lockheed Martin Corp.’s information technology business. It was the largest federal IT contractor in the 2022 fiscal year, with $3.98 billion in contract obligations, according to Bloomberg Government data.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%