Fermilab – Credential Compromise

The Fermilab physics laboratory has taken action to lock down its systems after security researchers found weaknesses exposing documents, proprietary applications, personal information, project details and credentials. Fermilab, which is part of the US Department of Energy, is a world-famous particle accelerator and physics laboratory in Batavia, Illinois. One database the researchers discovered allowed unauthenticated access to 5,795 documents and 53,685 file entries. One entry point led into Fermilab’s IT ticketing system, which displayed 4,500 trouble tickets. Also found was an FTP server that required no password and allowed anyone to log in anonymously. Other impacted systems exposed credentials, experiment data and other proprietary information that were stored with no security.

Individual Impact: No sensitive personal or financial information was confirmed as compromised in this incident, but the investigation is ongoing.

Customers Impacted: Unknown

Get In Touch

Share On Social Media

Other Recent Blog Articles

Imagine your business is like a really important house, like a bank or a hospital, filled with valuable information. Keeping it secure from digital “burglars” is crucial!

March 27, 2025

Imagine your business. It’s not just an office or a storefront anymore; it’s a digital vault. Inside reside your most valuable assets: customer data, financial records, intellectual property, and the…

Read More

Breaking Down I.T. with Steve: Is Your Small Business a Hidden Target? The Importance of Vulnerability Scanning

March 21, 2025

This week on “Breaking Down I.T. with Steve,” we’re tackling a critical topic that every small business owner in the Pacific Northwest needs to understand: vulnerability scanning. You might think…

Read More

Bank of America Data Breach: A Wake-Up Call for Third-Party Security

March 19, 2025

Bank of America Corp. (NYSE:BAC) recently issued a warning to a select group of customers regarding a potential data breach, highlighting the ever-present threat of data security vulnerabilities, even within…

Read More