Phillip Swagel, the director of the Congressional Budget Office, testified before the House Budget Committee during an oversight hearing, stating that the agency’s recent sophisticated cyberattack has been fully contained. The breach, which occurred two weeks ago, has no further evidence of unauthorized access to CBO email systems, according to the director, who first publicly addressed the incident during the session.
Swagel highlighted that the investigation into the breach is ongoing and extensive, with assistance provided by both federal security partners and private sector cybersecurity experts. Although some details about the attack, including the activities of the threat actor and measures to fortify the agency’s systems, will be shared with lawmakers in a closed-door setting, he emphasized that this information would not be disclosed during public proceedings. Swagel assured lawmakers that the CBO is operating normally and that the breach did not cause any major disruptions.
House Budget Committee Chair Jodey Arrington praised the CBO’s handling of the incident, noting that the agency took prompt action to notify all relevant parties and ensure the matter was addressed promptly. Arrington, a Texas Republican, commended the agency for its timely response and the sense of urgency demonstrated during the incident. The chair expressed confidence that the CBO had managed the situation responsibly and effectively, reinforcing the importance of cybersecurity preparedness within the federal government.
Despite the agency’s claim of normal operations, the incident has raised questions about the vulnerability of federal agencies to advanced cyber threats. As the investigation continues, the CBO’s transparency regarding the breach will be closely monitored, particularly in light of the potential for future cyberattacks against government systems. Swagel’s statement represents the first public acknowledgment of the breach and underscores the growing concerns surrounding cybersecurity in the U.S. federal government.