The Department of Homeland Security has confirmed a significant cybersecurity breach within the Federal Emergency Management Agency, leading to unauthorized access to its internal networks. In response, Homeland Security Secretary Kristi Noem dismissed 24 IT officials, including FEMA’s Chief Information Officer and Chief Information Security Officer. The breach was identified during a cybersecurity audit initiated by Secretary Noem as part of a comprehensive review of FEMA’s operations. The investigation uncovered numerous long-standing vulnerabilities in FEMA’s IT systems, despite nearly $500 million being spent on cybersecurity and IT infrastructure in Fiscal Year 2025. Key issues included the absence of multi-factor authentication, reliance on outdated protocols, and unpatched critical vulnerabilities. Although the breach did not result in data exfiltration or direct harm, it exposed DHS systems to potential risks. The audit faced internal resistance, with IT leadership allegedly downplaying vulnerabilities and hindering the investigation. The timing of the announcement has sparked speculation of political motives, yet DHS maintains that the dismissals were due to technical negligence and obstruction of oversight.
Was a cybersecurity breach discovered at FEMA by a US government audit?
