solarwinds

SolarWinds 0-day gave Chinese hackers privileged access to customer servers

Enlarge Getty Images Microsoft said on Tuesday that hackers operating in China exploited a zero-day vulnerability in a SolarWinds product. According to Microsoft, the hackers were, in all likelihood, targeting software companies and the US Defense industry. SolarWinds disclosed the zero-day on Monday, after receiving notification from Microsoft that it had discovered that a previously …

SolarWinds 0-day gave Chinese hackers privileged access to customer servers Read More »

SolarWinds hackers breach new victims, including a Microsoft support agent

Enlarge Getty Images The nation-state hackers who orchestrated the SolarWinds supply chain attack compromised a Microsoft worker’s computer and used the access to launch targeted attacks against company customers, Microsoft said in a terse statement published late on a Friday afternoon. The hacking group also compromised three entities using password-spraying and brute-force techniques, which gain …

SolarWinds hackers breach new victims, including a Microsoft support agent Read More »

The SolarWinds hackers aren’t back—they never went away

Enlarge / “And people reliably click on these emails? Really?” Kremlin official photo The Russian hackers who breached SolarWinds IT management software to compromise a slew of United States government agencies and businesses are back in the limelight. Microsoft said on Thursday that the same “Nobelium” spy group has built out an aggressive phishing campaign …

The SolarWinds hackers aren’t back—they never went away Read More »

SolarWinds hackers are back with a new mass campaign, Microsoft says

Enlarge Getty Images The Kremlin-backed hackers who targeted SolarWinds customers in a supply chain attack have been caught conducting a malicious email campaign that delivered malware-laced links to 150 government agencies, research institutions and other organizations in the US and 23 other countries, Microsoft said. The hackers, belonging to Russia’s Foreign Intelligence Service, first managed …

SolarWinds hackers are back with a new mass campaign, Microsoft says Read More »

Chinese hackers targeted SolarWinds customers in parallel with Russian op

Enlarge Getty Images By now, most people know that hackers tied to the Russian government compromised the SolarWinds software build system and used it to push a malicious update to some 18,000 of the company’s customers. On Monday, researchers published evidence that hackers from China also targeted SolarWinds customers in what security analysts have said …

Chinese hackers targeted SolarWinds customers in parallel with Russian op Read More »

US plans ‘a mix of actions’ against Russia over SolarWinds cyberattack

The US is preparing to retaliate against Russia after determining the country was probably involved in the SolarWinds cyberattack. Without providing specifics, White House press secretary Jen Psaki confirmed to CNBC that the government will carry out “a mix of actions seen and unseen.” According to the New York Times, the US may start conducting …

US plans ‘a mix of actions’ against Russia over SolarWinds cyberattack Read More »

Microsoft says SolarWinds hackers stole source code for 3 products

Enlarge Drew Angerer | Getty Images The hackers behind one of the worst breaches in US history read and downloaded some Microsoft source code, but there’s no evidence they were able to access production servers or customer data, Microsoft said on Thursday. The software maker also said it found no evidence the hackers used the …

Microsoft says SolarWinds hackers stole source code for 3 products Read More »

DoJ says SolarWinds hackers breached its Office 365 system and read email

Enlarge Gregory Varnum The US Justice Department has become the latest federal agency to say its network was breached in a long and wide-ranging hack campaign that’s believed to have been backed by the Russian government. In a terse statement issued Wednesday, Justice Department spokesman Marc Raimondi said that the breach wasn’t discovered until December …

DoJ says SolarWinds hackers breached its Office 365 system and read email Read More »

Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack

Enlarge / Side view of colorful St. Basil’s Cathedral in Moscow on Red Square in front of the Kremlin, Russia. Getty Images Hackers working for the Russian government were “likely” behind the software supply chain attack that planted a backdoor in the networks of 180,000 private companies and governmental bodies, officials from the US National …

Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack Read More »

SolarWinds hack may have been much wider than first thought

REUTERS/Sergio Flores The scope of the SolarWinds hack keeps growing. The New York Times has conducted interviews indicating that the allegedly Russia-backed campaign was much further-reaching than initially believed. Where the intruders allegedly scouted ‘just’ a few dozen government and corporate networks, it now looks like up to 250 networks fell victim to the hack. …

SolarWinds hack may have been much wider than first thought Read More »