Tech

China’s and Russia’s spying spree will take years to unpack

Enlarge First it was SolarWinds, a reportedly Russian hacking campaign that stretches back almost a year and has felled at least nine US government agencies and countless private companies. Now it’s Hafnium, a Chinese group that’s been attacking a vulnerability in Microsoft Exchange Server to sneak into victims’ email inboxes and beyond. The collective toll […]

Tech

Microsoft says SolarWinds hackers stole source code for 3 products

Enlarge (credit: Drew Angerer | Getty Images) The hackers behind one of the worst breaches in US history read and downloaded some Microsoft source code, but there’s no evidence they were able to access production servers or customer data, Microsoft said on Thursday. The software maker also said it found no evidence the hackers used […]

Tech

SolarWinds patches vulnerabilities that could allow full system control

Enlarge (credit: Getty Images) SolarWinds, the previously little-known company whose network-monitoring tool Orion was a primary vector for one of the most serious breaches in US history, has pushed out fixes for three severe vulnerabilities. Martin Rakhmanov, a researcher with Trustwave SpiderLabs, said in a blog post on Wednesday that he began analyzing SolarWinds products […]

Tech

Security firm Malwarebytes was infected by same hackers who hit SolarWinds

Enlarge (credit: Getty Images) Security firm Malwarebytes said it was breached by the same nation-state-sponsored hackers who compromised a dozen or more US government agencies and private companies. The attackers are best known for first hacking into Austin, Texas-based SolarWinds, compromising its software-distribution system, and using it to infect the networks of customers who used […]

Tech

SolarWinds malware has “curious” ties to Russian-speaking hackers

Enlarge (credit: Getty Images) The malware used to hack Microsoft, security company FireEye, and at least a half-dozen federal agencies has “interesting similarities” to malicious software that has been circulating since at least 2015, researchers said on Monday. Sunburst is the name security researchers have given to malware that infected about 18,000 organizations when they […]

Tech

DoJ says SolarWinds hackers breached its Office 365 system and read email

Enlarge (credit: Gregory Varnum) The US Justice Department has become the latest federal agency to say its network was breached in a long and wide-ranging hack campaign that’s believed to have been backed by the Russian government. In a terse statement issued Wednesday, Justice Department spokesman Marc Raimondi said that the breach wasn’t discovered until […]

Tech

Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack

Enlarge / Side view of colorful St. Basil’s Cathedral in Moscow on Red Square in front of the Kremlin, Russia. (credit: Getty Images) Hackers working for the Russian government were “likely” behind the software supply chain attack that planted a backdoor in the networks of 180,000 private companies and governmental bodies, officials from the US […]

Tech

Russia’s hacking frenzy is Really a reckoning

Expand / / The assault struck on multiple US agencies–along with a complete evaluation of the damage could still be weeks away. Bloomberg Last week, many leading United States government agencies–such as the Departments of Homeland Security, Commerce, Treasury, and State–discovered their systems were broken up by Russian hackers at an months-long espionage performance . […]

Tech

Microsoft is Allegedly added to This growing list of Sufferers in SolarWinds Hack on

Microsoft was murdered with exactly the identical group that jeopardized the networks of applications manufacturer SolarWinds and multiple national agencies, Reuters reported, citing people knowledgeable about the issue. Citing the very exact individuals, the news agency said that Microsoft’s own products were subsequently utilised in follow-on hacks others. It was not immediately clear just how […]

Tech

SolarWinds hack that Violated gov networks pose a”grave Threat” into the Country

Expand (charge: Getty Images) The distribution chain assault utilized to breach national agencies and one personal firm poses a”grave threat” into the United States, in part because the Turks probably used means aside from the SolarWinds backdoor to permeate systems of attention, government officials said Thursday. One of these components belongs to the National Nuclear […]