More than 250 US Federal Agencies and big companies have been attacked by alleged state-sponsored Russian hackers. The attackers gained access by hacking into 'SolarWinds Orion' management and monitoring software. The hack was much worse than what I expected, says US Senator Mark Warner according to New York Times report. The scale of the attack keeps increasing, it's evident that the US government failed to detect the attack. As per the report, companies like Amazon and Microsoft who offer cloud-based services, now investigate further to find evidence.
The further investigation cleared that no other unusual
activities were found. During the investigation, these accounts
were tested and then restored. Earlier assumptions suggested
Russian actors breached more than 18000 public and private networks
(including government agencies). According to the reports, it
suggests that few breached SolarWinds softwares were modified in
Eastern Europe. Cybersecurity experts and federal officers
currently investigate if the large scale attack operated from areas
where Russian intelligence is deeply embedded.
CISA (Cybersecurity and Infrastructure Security Agency) has alarmed
US federal agencies to either shut down all the exploits SolarWinds
applications or update the hacked SolarWinds Orion software.
E-Hacking
News[1] earlier reported
"currently, Microsoft hints to “a very sophisticated nation-state
actor” as the attacker, cybersecurity experts, and the U.S
government has alleged Russia for orchestrating the SolarWinds
attack. The cyberattack also revealed a listing of susceptible
companies. However, Microsoft didn't disclose how much the hackers
were able to view the source code and what the hackers did with it.
"
References
- ^ E-Hacking News (www.ehackingnews.com)
Read more https://www.ehackingnews.com/2021/01/solarwinds-attack-update-russian.html
