Hackers expose defence and intelligence officials in US and UK

Thousands of British email addresses and encrypted passwords, including those of defence, intelligence and police officials as well as politicians and Nato advisers, have been revealed on the internet following a security breach by hackers.

Among the huge database of private information exposed by self-styled "hacktivists" are the details of 221 British military officials and 242 Nato staff. Civil servants working at the heart of the UK government – including several in the Cabinet Office as well as advisers to the Joint Intelligence Organisation that acts as the prime minister's eyes and ears on sensitive information – have also been exposed.

The exposure of the database came after hackers – who are believed to be part of the Anonymous group – gained unauthorised access over Christmas to the account information of Stratfor, a consultancy based in Texas that specialises in foreign affairs and security issues. The database had recorded in spreadsheets the user IDs – usually email addresses – and encrypted passwords of about 850,000 individuals who had subscribed to Stratfor's website.

>

John Bumgarner, an expert in cyber-security at US Cyber Consequences Unit, a research body in Washington, has carried out an analysis of the Stratfor breach on behalf of the Guardian. He has identified within the data posted by the hackers the details of hundreds of UK government officials, some of whom work in highly sensitive areas. Many of the email addresses listed are not routinely made public, and the passwords are all encrypted in code that can quickly and easily be cracked using off-the-shelf software.

http://www.guardian.co.uk/technology/2012/jan/08/hackers-expose-defence-intelligence-officials Sunday 8 January 2012 16.00 GMT

A version will appeared in the Guardian on Monday 9 January 2012. It was last modified at 16.12 GMT on Sunday 8 January 2012.