Updates: DOL's Site Exposure Matrix (SEM) Website Hacked
May 13: DOL has reported that their contractor has completed the analysis of the problem and repaired the damage to the SEM. Once the DOL security officer has reviewed the report to double check everything the SEM should be back online. This may happen as soon as this week but could take longer depending on the security officer's review.
May 9: Microsoft reports a fix for the Internet Explorer Version 8 vulnerability. If you cannot update to Version 9 or 10 and are still running Version 8 this may help you keep from being attacked. DEEOIC has not yet released any information on how many visitors to the webpage may have been affected by the malware or when we can expect the public SEM to be available again.
May 7: The attack on DOL's SEM seems to have been possible because there is a problem with Microsoft's Internet Explorer, version 8. Until Microsoft fixes the problem with IE 8 it will be vulnerable to these kind of attacks. If you use IE you may want to check to see what version you are using and upgrade to version 9 or 10. If you are running Windows operating system XP you may need to switch to another browser such as Firefox or .
May 6: A DOL official reported on Monday May 6th that the SEM contractors have worked through the weekend to try to secure the website that was hacked and to find a way to identify the IP addresses of those who may have been on the website during the time that the malware was on the SEM website. They are taking this situation seriously and working to correct the problems.
According to news reports the SEM was hacked on either April 29th, April 30th, or May 1st. The SEM is currently off line. If you have been on the DOL's SEM website recently, your computer may have been infected. Be sure and check your computer for viruses and other malicious software. DOL has issued the following statement:
"On May 1, 2013, the Department of Labor (DOL) confirmed that a website related to a DOL program appeared to be compromised. The website was immediately taken offline and the Department began working with appropriate internal and external authorities to investigate and to mitigate any potential impacts. The website will remain offline until DOL completes its initial investigation. At this time there is no evidence of compromise to or loss of DOL information nor is there any disruption in DOL's services. The Department will continue the investigation and will ensure that appropriate precautions and safeguards remain in place to protect our information and information systems."
Donate to EECAP
Has EECAP helped you with your claim? Do you appreciate the work EECAP is doing? Please make a donation so we can continue to help these workers who sacrificed their health, and the families of those who sacrificed their lives, in the U.S. nuclear weapons program. Together we can make a difference for these workers and families.
Click the Donate button below to make a contribution to EECAP with a secure PayPal transaction. You do not need a PayPal account to use this service. Donations are tax deductible. Be sure to include your name and address so we can mail you a receipt.
You may also mail a contribution to EECAP, P.O. Box 552, Yellow Springs, Ohio 45387.
Thanks so much!