at the two leaders’ first in-person meeting in Switzerland. In May, Microsoft said it discovered that the hackers were involved in a phishing campaign that targeted 3,000 email accounts belonging to workers at more than 150 organizations.Įarlier this month, President Biden said he warned his Russian counterpart, Vladimir Putin, that there would be consequences for cyberattacks on the U.S. Since then, the Russian-linked hackers have made it clear that they intend to continue their activity.
Microsoft solarwinds series#
In April, the Biden administration unveiled a series of sanctions against Russia citing, among other things, the SolarWinds cyberattack. “The latest cyberattack reported by Microsoft does not involve our company or our customers in any way," a SolarWinds spokesman said. In this particular case, going after a support person at Microsoft who clearly has information and connections to Microsoft customers." said Dmitri Alperovitch, a former cybersecurity investigator who is executive chairman at the Silverado Policy Accelerator think tank.Ībout 100 companies and at least nine government agencies are known to have been compromised during the SolarWinds attack, which went undetected for months before it was discovered this past fall. “This shows that the SVR continues to execute supply chain attacks. technology companies and use them as a back door into government and commercial targets, a tactic known as a “supply-chain attack."
The breaches at Microsoft and SolarWinds have raised concerns among government and industry security professionals that Russian hackers are engaged in a longstanding and concerted effort to break into U.S. “We stand ready to assist any affected entities." He declined to say whether any government agencies had been hit by the hack.
Cybersecurity and Infrastructure Security Agency is “aware of this activity and is working with Microsoft and our interagency partners to evaluate the impact," said a spokesman for the Department of Homeland Security, which oversees the agency.
Microsoft solarwinds software#
In December, Microsoft said Nobelium hackers had broken into the company’s networks to view internal source code, used to build software products. The incident marks the second time in recent months that Russia-linked hackers have breached Microsoft’s networks. “Hackers made it past the defenses of one of the world’s most sophisticated technology suppliers, whose software underlies our entire economy." “This should concern all of us," said Sherri Davidoff, chief executive of the security consulting firm LMG Security LLC. A Russian embassy representative didn’t immediately return a message seeking comment on Microsoft’s blog post. Russia has denied involvement in the SolarWinds hack. authorities have said this group is part of Russia’s Foreign Intelligence Service, known as the SVR. Microsoft identified the hackers behind the break-in as Nobelium, the same group associated with the sophisticated hack at Austin, Texas-based software maker SolarWinds Corp. “We have confirmed that two of the compromises were unrelated to the support agent issue, and are continuing to investigate the third instance," a Microsoft spokesman said. Most of the attacks were unsuccessful, but three of Microsoft’s customers were compromised during the campaign, the company said. The incident was part of a broader campaign-which involved other hacking techniques beyond leveraging the information taken from its support system-that primarily targeted technology companies and government agencies in 36 countries. “We responded quickly, removed the access and secured the device." “The actor used this information in some cases to launch highly-targeted attacks as part of their broader campaign," Microsoft said.
0 kommentar(er)
