Hello, and welcome to today’s cybersecurity update. A recent Ars Technica investigation reveals that a software engineer at the Department of Government Efficiency—known as DOGE—and the Cybersecurity and Infrastructure Security Agency may have had his computer compromised by info-stealing malware. Journalist Micah Lee uncovered that login credentials tied to Kyle Schutt have appeared in public leaks at least four times since 2023, indicating his devices were hacked. Lee warns, “I have no way of knowing exactly when Schutt’s computer was hacked, or how many times,” but the steady stream of stolen credentials—including those from major breaches at Adobe, LinkedIn, and Gravatar—suggests long-term exposure. If Schutt reused passwords across his work at CISA and DOGE, attackers could already be inside critical federal systems. Critics point to “awful 0pSec” and suspect these lapses may be more than mere incompetence. CISA and DHS have not yet responded to requests for comment. That’s all for now—stay safe online.
Link to Article