House legislators request investigation into FDA hack

Share this article:

Lawmakers have asked the Food and Drug Administration (FDA) to look into an October hack that involved an unauthorized user gaining access to the agency's online submission systems.

In a letter to FDA commissioner Margaret A. Hamburg, five representatives on the Energy and Commerce Committee, expressed concern over the incident that didn't gain much media exposure. The Energy and Commerce Committee is longest standing legislative committee in the U.S. House of Representatives.

According to the letter, the breach occurred on Oct. 15 when an unauthorized user gained access to the electronic submission system, which hosts information on all medical product information for the FDA, “including information for drug and medical device products.” Members of the industry were not notified of the incident until Nov. 8.

In addition to “confidential business information,” the sensitive medical data belonging to patients enrolled in clinical trials was also accessed, as well as names, phone numbers, email addresses, and passwords to 14,000 accounts, of which close to 5,000 are active.

The legislators that penned the letter, which include Reps. Fred Upton, R-Mich., Tim Murphy, R-Pa., Joe Barton, R-Texas, Marsha Blackburn, R-Tenn., and Michael Burgess, R-Texas, have asked the agency to hire experts to conduct an investigation into the breach.

“It is essential to the fulfillment of FDA's mission that regulated industry and patients have confidence in the security of sensitive information they submit to the FDA,” they wrote.

The FDA allocates 12 percent of its budget toward information technology, which the legislators believe should be preventing breaches. They have asked the agency to respond to their requests by Dec. 19.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters


More in News

Email promises free pizza, ensnares victims in Asprox botnet instead

Email promises free pizza, ensnares victims in Asprox ...

Cloudmark came upon an email that offers free pizza, but clicking on the link to get the coupon ends with victims being ensnared in a botnet.

Report: most orgs lacking in response team, policies to address cyber incidents

In its Q3 threat intelligence report, Solutionary learned that 75 percent of organizations it assisted had no response team or policies and procedures to address cyber incidents.

Flash redirect campaign impacts Carnegie Mellon page, leads to Angler EK

Flash redirect campaign impacts Carnegie Mellon page, leads ...

Malwarebytes found that, since early July, thousands of sites had been targeted in the campaign.