Edward Coristine, an engineer with connections to both the ‘Big Balls’ DOGE team and a past affiliation with cybercriminal community The Com, joined CISA. His potential security risks include access to sensitive infrastructure data and abilities to exploit software vulnerabilities. Coristine's history of seeking help for a DDOS attack and the leak of internal documents at Path Network raise concerns about the safeguarding of critical, sensitive information within CISA.
Source: https://www.wired.com/story/doge-cisa-coristine-cybersecurity/
TPRM report: https://scoringcyber.rankiteo.com/company/pathnetwork
"id": "pat001022425",
"linkid": "pathnetwork",
"type": "Breach",
"date": "2/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Government',
'name': 'CISA',
'type': 'Government Agency'},
{'name': 'Path Network', 'type': 'Private Company'}],
'attack_vector': ['DDOS Attack', 'Data Leak'],
'data_breach': {'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Internal documents'},
'description': 'Edward Coristine, an engineer with connections to both the '
'‘Big Balls’ DOGE team and a past affiliation with '
'cybercriminal community The Com, joined CISA. His potential '
'security risks include access to sensitive infrastructure '
'data and abilities to exploit software vulnerabilities. '
"Coristine's history of seeking help for a DDOS attack and the "
'leak of internal documents at Path Network raise concerns '
'about the safeguarding of critical, sensitive information '
'within CISA.',
'impact': {'brand_reputation_impact': 'Concerns about the safeguarding of '
'critical, sensitive information within '
'CISA',
'data_compromised': 'Internal documents at Path Network'},
'threat_actor': 'Edward Coristine',
'title': 'Potential Security Risks Involving Edward Coristine at CISA',
'type': 'Insider Threat',
'vulnerability_exploited': 'Access to sensitive infrastructure data'}