Close Menu
Cybercrime and Ransomware

Contractors with Hacking Past Accused of Wiping 96 Government Databases

Staff WriterBy No Comments4 Mins Read5 Views

Essential Insights

  1. The Akhter brothers, former federal contractors, were charged with conspiring to steal and destroy sensitive government data after being rehired post-prison, highlighting serious security breaches.
  2. In February 2025, Muneeb Akhter allegedly deleted about 96 federal databases and sought AI assistance to cover his tracks, demonstrating malicious intent to disrupt government systems.
  3. Both brothers are accused of stealing personal and government information, including IRS data for 450 individuals, and attempting to obstruct investigations by destroying evidence and wiping devices.
  4. The case underscores how abuse of contractor roles can jeopardize national security and disrupt government services, emphasizing the need for robust identity and access management (IAM) strategies.

Underlying Problem

Two brothers from Virginia, Muneeb and Sohaib Akhter, have been charged with serious cybercrimes following their recent arrest. Initially, they served time in 2015 for unauthorized access to U.S. government systems and theft of personal data. However, after being rehired as federal contractors, they allegedly plotted to sabotage government databases once more. Specifically, they are accused of deleting about 96 sensitive databases, including investigative files and tax records, shortly after being fired. Muneeb reportedly also used artificial intelligence to cover his tracks and stole information from multiple agencies, such as the IRS and the Equal Employment Opportunity Commission. The Justice Department reports that their actions aimed to harm the government’s operations and compromise national security, and prosecutors claim the brothers intended to erase evidence and escape detection. If convicted, Muneeb faces decades in prison, while Sohaib potentially faces up to six years; their crimes profoundly threaten the integrity and security of federal information systems, as authorities emphasize the dangers of such breaches.

Risk Summary

The issue of contractors with hacking records accused of wiping 96 government databases could easily happen to your business too. If a trusted contractor has a past of cyber misconduct, they might exploit vulnerabilities, leading to catastrophic data loss. Such an attack can halt operations, jeopardize sensitive information, and erode customer trust. Moreover, the financial fallout from data breaches—including legal penalties and recovery costs—can be devastating. Consequently, neglecting proper vetting and cybersecurity measures makes your business vulnerable. Therefore, it’s crucial to thoroughly evaluate contractors and reinforce your digital defenses to prevent similar breaches from impacting your success.

Possible Next Steps

In the context of contractors with hacking records accused of wiping 96 government databases, swift and effective remediation is critical to restore system integrity, prevent further breaches, and maintain public trust. Rapid action ensures vulnerabilities are promptly addressed, minimizing potential damage and signaling a proactive security stance.

Assessment & Detection

  • Conduct comprehensive incident analysis to identify breach scope and affected systems.
  • Deploy advanced detection tools to uncover residual vulnerabilities and malicious artifacts.

Containment & Eradication

  • Isolate compromised networks and systems to prevent lateral movement.
  • Remove malicious code and unauthorized access points swiftly.

Mitigation Strategy

  • Implement robust access controls, including multi-factor authentication, to restrict contractor privileges.
  • Apply targeted patches and security updates to known vulnerabilities.
  • Enforce strict vendor and contractor security protocols, including background checks and continuous monitoring.

Recovery & Restoration

  • Restore data from secure backups to ensure integrity and accuracy.
  • Validate systems thoroughly before bringing them back online.

Notification & Reporting

  • Inform relevant stakeholders and authorities, complying with legal and regulatory requirements.
  • Document incident response for post-incident review and compliance evidence.

Prevention & Improvement

  • Develop rigorous contractor vetting and continuous monitoring processes aligned with NIST CSF’s “Identify” and “Protect” functions.
  • Enhance security awareness training for all personnel, emphasizing contractor management.
  • Regularly review and update cybersecurity policies to incorporate lessons learned from the incident.

Continue Your Cyber Journey

Explore career growth and education via Careers & Learning, or dive into Compliance essentials.

Understand foundational security frameworks via NIST CSF on Wikipedia.

Disclaimer: The information provided may not always be accurate or up to date. Please do your own research, as the cybersecurity landscape evolves rapidly. Intended for secondary references purposes only.

Cyberattacks-V1cyberattack-v1-multisource

Share.
Avatar photo

John Marcelli is a staff writer for the CISO Brief, with a passion for exploring and writing about the ever-evolving world of technology. From emerging trends to in-depth reviews of the latest gadgets, John stays at the forefront of innovation, delivering engaging content that informs and inspires readers. When he's not writing, he enjoys experimenting with new tech tools and diving into the digital landscape.

Related Posts

Comments are closed.