The US Department of Justice has seized 13 internet domains that were being used to target people holding government security clearances. The action, announced Tuesday, is the latest in an ongoing push to cut off cyber threats aimed at stealing sensitive information from those with access to classified material.
Who the domains targeted
The domains were specifically designed to trick security clearance holders into giving up credentials or other data. The DOJ said the seizure is part of a broader effort to protect the country's secrets from foreign spies, hackers, and other adversaries. Authorities did not disclose which agencies or clearance levels were most affected, but they noted the operation disrupted an active threat.
How the operation unfolded
Federal investigators identified the domains as part of coordinated cyber operations that impersonated legitimate government or contractor systems. After tracing the infrastructure, the DOJ obtained court orders to seize them. The takedown prevents anyone else from using those addresses for future attacks, though authorities warned similar schemes may still be active.
Why clearance holders are a prime target
Security clearance holders have access to classified programs, intelligence reports, and defense contracts. Phishing campaigns aimed at them can offer criminals a direct path to the government's most valuable information. The DOJ has made clear that protecting these individuals is a national security priority, and this seizure reflects that stance.
What happens next
Anyone who suspects they may have interacted with one of the seized domains is urged to report it to their security office. The DOJ continues to investigate the group behind the operation, and further legal actions are expected.
