Suspicious activity has been detected in the past weeks on an unclassified computer network at the White House, used by employees of the Executive Office of the President.

Details about the incident are scarce, since an investigation is ongoing, but measures have been taken to eliminate the threat.

It is not clear when the breach occurred, but officials talking to Washington Post said that it might have happened two or three weeks ago.

Some services were temporarily shut down (Intranet and VPN), and passwords for accessing them were changed for some employees, indicating the compromise of the credentials.

Speculation has it that a Russian espionage group is behind the attack, since the White House would fit the objective type targeted in a state-sponsored action.

The White House is constantly assaulted by bad actors trying to achieve intrusion, and in most cases, tracing them is a difficult task, since they could orchestrate the attack through connections anywhere in the world.

According to the newspaper, notification of the breach occurred from a third party that provides daily information about possible cyber threats targeting the White House.

The FBI, Secret Service, and the National Security Agency are involved in the investigation, which did not find evidence of deep penetration of the network or of data being exfiltrated.