Solarwinds hack linked to Russia While targeting government agencies and private corporations could be even worse than officials previously realized, about 250 federal agencies and businesses are now considered affected. New York Times Report.
Microsoft says the hackers tampered with Solarwinds’ Orion monitoring and management software, allowing them to “eras any existing users and accounts in the organization, including high-profile accounts.” This Times There are reports that Russia has exploited supply chain levels to access agencies’ systems.
This Times An early warning sensor placed in a cyber command and NSA in a foreign network to detect possible attacks reports that the incident has failed. Furthermore, it seems likely that the US government may have focused on protecting the November election from foreign hackers, taking resources and focusing on software software supply chains. Times. And carrying out the attack from the U.S. apparently allowed hackers to avoid detection by the Department of Homeland Security.
Microsoft said earlier this week that it had discovered that its systems were infiltrating “just beyond the presence of malicious Solarwinds code.” Hackers were able to “view source code in many source code repositories,” but the hacked account giving the access is not allowed to change any code or systems. However, in some good news, Microsoft said it found “no evidence of access to product services or customer data,” and “no indications that our systems are being used to attack others.”
This was stated by Sen. Mark Werner (D-Virginia), a ranking member of the Senate Intelligence Committee. Times Heck he looked “much, much worse” than he had previously feared. “Its size keeps expanding,” he said. “It’s clear the United States government missed.”