More than two years after Duke Energy hired the private contractor BlackEnergy to investigate its cyber security, the company is still investigating whether the hack could have been an inside job, according to internal emails obtained by The Times.
BlackEnergy, an energy security firm based in Pennsylvania, is now investigating whether any Duke employees hacked the company’s own internal emails, according the emails.
In the emails, BlackEnergy said the hack appeared to be “not related to Duke’s cyber security.”
It also said the attack “was very unusual and may have been done by one or more external attackers.”
But according to a person familiar with the investigation, Black Energy’s investigation into the matter is “far from over.”
The person, who spoke on condition of anonymity, said the company wants to interview all its employees and would not comment further until the investigation is completed.
Black Energy did not respond to a request for comment.
Blackenergy did not immediately respond to emails seeking comment.
The emails have been circulating among the company and employees since last fall, after Duke released a list of the cybersecurity threats that had been detected and the potential for harm.
The company has not released any of the emails publicly.
The email chain that was released on Friday shows that BlackEnergy is probing what happened, whether Duke was hacked or not, how the hack was carried out and whether there were any retaliatory measures.
The messages have not been independently verified, and they have not provided any details of what was discussed during the investigation.
Black energy has not been accused of any wrongdoing.
But the emails raise questions about whether BlackEnergy, which also has a cybersecurity division in charge of the company, acted with the intention of leaking the information.
The email chain, written by a senior executive at BlackEnergy and reviewed by The New York Times, says BlackEnergy had been in contact with the FBI and the Office of the Director of National Intelligence and the Department of Homeland Security about the issue.
It also said that a person close to BlackEnergy told the company that the company had received a request from a law enforcement agency that Black Energy needed to notify them.
The person did not identify the agency or state its name.
“This is a company that has a lot of experience in cybersecurity and they were trying to make sure that they did everything they could to be as careful as possible,” said the person who spoke to the Times.
“It doesn’t mean that this was intentional.
It’s just that it is so close to the investigation.”
In the email, Black said that Black has been in touch with the federal government and the state of New York about the matter.
“I will be reaching out to the FBI tomorrow,” the email said.
“If this is a breach that the government believes is related to cybersecurity, we are still in the process of gathering the facts and will have to get back to you.”
A spokeswoman for Black Energy did also not respond when asked if the company has any concerns about whether the hacking was carriedout by an outside group.
“We have no further comment,” Black Energy said in a statement to The Times on Friday.
A person familiar who spoke with Black Energy on the condition of not being named said it has not yet had any contact with authorities.
The people also spoke on the record to The New Yorker, saying they had been told to avoid any news of the investigation and to keep quiet about what was going on at the company.
The conversations were held before the release of the hacked emails, and the person said the emails were shared among employees in the company before they were published.
The emails have drawn criticism from security experts, who said they raise questions over the company handling cybersecurity.
They also raise questions whether Black Energy could have done more to ensure that employees’ emails were protected.
“I don’t know if this was done to retaliate or to help them protect themselves, but the fact that it’s not clear that it was was done is very concerning,” said Chris Vickery, a cybersecurity expert at Johns Hopkins University.
“This raises the question of why it wasn’t done earlier.
It raises the other question of, why wasn’t this done earlier?””
We do not have enough information to say for sure whether this was malicious or not,” said Peter Eckersley, an associate professor at the Johns Hopkins School of Advanced International Studies.”
The fact that Black was the one to leak the emails raises serious concerns, especially if it turns out that the emails are being hacked by the same people who stole data from Duke Energy,” Eckersly said.
The Times did not find any evidence that Black had been hacked.
The documents have sparked an intense debate in Washington, where lawmakers and the FBI are considering whether to launch an investigation.
Some Democratic lawmakers have called for the probe to be reopened.
The Times reported that the hacked Black Energy emails show that the cybersecurity department at Duke was aware of the hack, but it didn’t act.
“The Black Energy cybersecurity department had not seen the email before the Black Energy breach, and it did