07 Jan 2021

DoJ’s Microsoft 365 Email Accounts Compromised in SolarWinds Attacks

The Department of Justice has conceded that its email accounts were breached by Russian attackers as part of the SolarWinds Orion software attacks, according to an announcement made yesterday. Roughly three percent of email accounts were breached, the department stated. The stealthy attacks lead to email compromise among other agencies

Read More
29 Dec 2020

Finland says hackers accessed MPs’ emails accounts

On Monday, the Finnish Parliament disclosed that it had been the victim of an intrusion in which hackers gained access to email communications between staff and compromised its internal IT system. The attack took place earlier this fall but was discovered this month by Parliament IT staff. Norway reported a

Read More
29 Dec 2020

‘Very difficult to defend’: What happens if hackers are inside the Pentagon’s networks?

The Pentagon has protections in place to prevent breaches and threat actors accessing sensitive information such as communications and weapons systems. These cybersecurity measures, such as protective blockades, need to be strong enough to keep foreign hackers out of systems and prevent theft, alteration, or damage to their data. However,

Read More
28 Dec 2020

SolarWinds Hackers “Impacting” State and Local Governments

The Cybersecurity and Infrastructure Security Agency (CISA) recently issued a warning regarding the impact of the recent SolarWinds Orion software government espionage campaign likely conducted by Russia. The hack consisted of Russian nation-state hackers compromising SolarWinds’s popular Orion software supply chain, effectively installing a backdoor into hundreds of high profile

Read More
21 Dec 2020

How the Russian hacking group Cozy Bear, suspected in the SolarWinds breach, plays the long game

The SolarWinds breach has thrown US government agencies and thousands of companies into a frenzy, trying to determine which agencies were hacked and what information was accessed. The culprit may have been one of the most high-profile and persistent hacking groups, the Russian government-backed APT29 referred to as Cozy Bear.

Read More
18 Dec 2020

Microsoft says it found malicious software in its systems

Yesterday, Microsoft announced that it had also been targeted by the SolarWinds espionage campaign after uncovering malware within its systems. The tech giant uses the networking management software Orion found to be the source of the attack impacting a half dozen federal agencies so far. Microsoft’s own products may have

Read More
18 Dec 2020

Nuclear Weapons Agency Hacked in Widening Cyberattack

According to Politico, official Department of Energy sources confirmed that the Energy Department and its National Nuclear Security Administration (NNSA) were compromised as part of the SolarWinds espionage campaign. The NNSA is responsible for maintaining the US nuclear stockpile. The Federal Energy Regulatory Commission (FERC) has oversight for the entire

Read More
17 Dec 2020

FireEye Identifies Killswitch for SolarWinds Malware as Victims Scramble to Respond

FireEye, the company that exposed the SolarWinds intrusion, has now announced that it has identified a killswitch that would halt the malware’s operation on infected networks. The White House National Security Council has already created a unified group to coordinate responses across victims and collaborate on solutions. However, the killswitch

Read More
16 Dec 2020

DHS, DOJ And DOD Are All Customers Of SolarWinds Orion, The Source Of The Huge US Government Hack

The SolarWinds Russia espionage campaign is not limited to the Treasury and Commerce departments, the first two agencies to concede that they were victimized by the incident. The Department of Justice has also announced its involvement in the campaign, however, the list of government agencies that operated on the impacted

Read More
16 Dec 2020

Hack May Have Exposed Deep US Secrets; Damage Yet Unknown

Authorities say that some of America’s deepest secrets may have been stolen in a months-long espionage campaign that just came to light. The operation has been blamed on Russian government hackers and occurred when threat actors were able to slip malicious code into a software update issued by popular provider

Read More