Cyber Incident Victim: New York Police Department Captain Endowment Association
Date:
Mar 2015
Location:
United States of America
Summary
The NYPD Captain Endowment Association's website was compromised with malware for nearly two days, with the union president indicating possible involvement by the Anonymous collective based on social media statements, though investigators could not confirm the attack's origin. No personal data was accessed as none was stored on the site, and the organization characterized the incident as a disruptive nuisance rather than a critical security breach. A representative from the hacker collective denied direct knowledge of the attack but suggested such actions could be anticipated in response to alleged systemic misconduct by law enforcement, referencing prior cyber threats against the department following public protests.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On March 23, 2015, the New York Police Department Captain Endowment Association (NYPDCEA) disclosed that its official website, NYPDCEA.org, had been compromised by hackers. The attack involved malware injection that corrupted the site for nearly two days, ending on the Saturday preceding the announcement. Union president Roy Richter notified members via letter, stating the intrusion was detected but provided no specifics on how or when the initial breach occurred. Richter cited "indication" that the hacktivist collective Anonymous orchestrated the attack, though he later clarified this suspicion stemmed solely from statements observed on Twitter. Investigators remained unable to confirm the perpetrators or their methods at the time of reporting. The website did not store personal identifying information for members or visitors, according to the union, minimizing potential data exposure risks. Richter characterized the incident as "a nuisance rather than a security threat," emphasizing operational continuity despite the temporary website disruption. No additional systems or databases beyond the public-facing website were confirmed affected.
Anonymous representatives responded to inquiries from Techworm.net, denying direct knowledge of the attack while asserting that any cyber actions against the NYPD would be predictable given alleged systemic misconduct by police. This statement referenced historical tensions, including Anonymous’ 2011 cyberwar threats against the NYPD following clashes with Occupy Wall Street protesters. The 2015 incident concluded with the malware’s removal and site restoration by Saturday, though attribution remained unverified. No further disruptive actions, data theft, or follow-up claims materialized in immediate aftermath reports. The union did not disclose technical remediation steps beyond eliminating the malware, nor did it reference coordinated law enforcement investigations in its public communications. Impact appeared confined to temporary website inaccessibility and reputational implications linked to the breach announcement.