Turla cyberspies were linked to the SolarWinds breach due to similarities in the malware used in the attack and Kazuar, a backdoor used. The hackers are believed to be based in Russia and targeted the SolarWinds company in a sophisticated attempt to breach the system of hundreds of high-profile organizations.
The Department of Justice has conceded that its email accounts were breached by Russian attackers as part of the SolarWinds Orion software attacks, according to an announcement made yesterday. Roughly three percent of email accounts were breached, the department stated. The stealthy attacks lead to email compromise among other agencies
The Pentagon has protections in place to prevent breaches and threat actors accessing sensitive information such as communications and weapons systems. These cybersecurity measures, such as protective blockades, need to be strong enough to keep foreign hackers out of systems and prevent theft, alteration, or damage to their data. However,
The Cybersecurity and Infrastructure Security Agency (CISA) recently issued a warning regarding the impact of the recent SolarWinds Orion software government espionage campaign likely conducted by Russia. The hack consisted of Russian nation-state hackers compromising SolarWinds’s popular Orion software supply chain, effectively installing a backdoor into hundreds of high profile
The SolarWinds breach has thrown US government agencies and thousands of companies into a frenzy, trying to determine which agencies were hacked and what information was accessed. The culprit may have been one of the most high-profile and persistent hacking groups, the Russian government-backed APT29 referred to as Cozy Bear.
Yesterday, Microsoft announced that it had also been targeted by the SolarWinds espionage campaign after uncovering malware within its systems. The tech giant uses the networking management software Orion found to be the source of the attack impacting a half dozen federal agencies so far. Microsoft’s own products may have
According to Politico, official Department of Energy sources confirmed that the Energy Department and its National Nuclear Security Administration (NNSA) were compromised as part of the SolarWinds espionage campaign. The NNSA is responsible for maintaining the US nuclear stockpile. The Federal Energy Regulatory Commission (FERC) has oversight for the entire
FireEye, the company that exposed the SolarWinds intrusion, has now announced that it has identified a killswitch that would halt the malware’s operation on infected networks. The White House National Security Council has already created a unified group to coordinate responses across victims and collaborate on solutions. However, the killswitch
The US Department of Homeland Security is currently investigating a Russian state-sponsored espionage campaign that allowed the Russian intelligence force to monitor sensitive government information. Businesses have been scrambling to mitigate the risks posed by the sweeping hacks. Email communication at the DHS was under surveillance by Russia for an
According to sources at the White House, the National Security Council met on Saturday to discuss a recent hack affecting US agencies and likely perpetrated by Russia. US officials have offered little further information besides confirming that there was a breach within the Commerce Department that is being investigated by