Top US conservative thinktank hit by cyberattack — Heritage Foundation hit once again

Global Satellite System
(Image credit: Shutterstock)

Top US conservative thinktank, The Heritage Foundation, has said that it was struck by a cyberattack.

An official at the thinktank told Politico, which first broke the news, that in order to mitigate the threat, the organization “shut down its network to prevent any further malicious activity while we investigate the incident.”

According to TechCrunch, which spoke to a person with knowledge of the cyberattack, it is still not known who was behind the attack, or what data was stolen.

Possible nation state attack?

The Heritage Foundation places great importance on the threat posed by nation state cyber attacks, and having suffered an attack in 2015 that stole emails and personal details of its donors, it is unsurprising that the organization’s first suspect is a state-sponsored actor.

Think tanks are a lucrative target for nation state cyber attacks thanks to the donations they handle, and their influence on policy making in the US. Moreover, many former US administration officials have progressed  working at thinktanks, with former vice-president Mike Pence working as a distinguished visiting fellow at the Heritage Foundation following Trump’s unsuccessful re-election in 2021.

The US government has already suffered a number of cyber attacks targeting federal agencies and government contractors in 2024, with the recent spate of Ivanti vulnerabilities associated with its Endpoint Management Software and its Connect Secure application.

Microsoft security vulnerabilities are also giving state-sponsored hackers a significant advantage in accessing confidential personal information among other data, with several federal agencies having emails stolen from the accounts of US officials by MidnightBlizzard, also tracked at APT29.

More from TechRadar Pro

Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
An American flag flying outside the US Capitol building against a blue sky
More alleged Chinese intrusions into the US Treasury revealed
China
AT&T and Verizon say they're free of Salt Typhoon hacks at last, as further victims identified
An American flag flying outside the US Capitol building against a blue sky
US military and defense contractors hit with Infostealer malware
Flag of the People's Republic of China overlaid with a technological network of wires and circuits.
Salt Typhoon attacks may have hit more US firms than previously thought
China
US Treasury declares ‘major incident’ after apparent state-sponsored Chinese hack
A wall of data on a large screen.
“It's the same doors that the good guys use, that the bad guys can walk through” - former White House tech advisor on data-centric security in the wake of Salt Typhoon
Latest in Pro
Isometric demonstrating multi-factor authentication using a mobile device.
NCSC gets influencers to sing the praises of 2FA
Sam Altman and OpenAI
OpenAI is upping its bug bounty rewards as security worries rise
Context Windows
Why are AI context windows important?
BERT
What is BERT, and why should we care?
A person holding out their hand with a digital AI symbol.
AI is booming — but are businesses seeing real impact?
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Dangerous new CoffeeLoader malware executes on your GPU to get past security tools
Latest in News
Nintendo Switch 2 Joy-Con up-close from app store
Nintendo's new app gave us another look at the Switch 2, and there's something different with the Joy-Con
cheap Nintendo Switch game deals sales
Nintendo didn't anticipate that Mario Kart 8 Deluxe was 'going to be the juggernaut' for the Nintendo Switch when it was ported to the console, according to former employees
Three angles of the Apple MacBook Air 15-inch M4 laptop above a desk
Apple MacBook Air 15-inch (M4) review roundup – should you buy Apple's new lightweight laptop?
Witchbrook
Witchbrook, the life-sim I've been waiting years for, finally has a release window and it's sooner than you think
Amazon Echo Smart Speaker
Amazon is experimenting with renaming Echo speakers to Alexa speakers, and it's about time
Shigeru Miyamoto presents Nintendo Today app
Nintendo Today smartphone app is out now on iOS and Android devices – and here's what it does