EXPLAINER: How bad is the hack that targeted US agencies?
4 years ago

EXPLAINER: How bad is the hack that targeted US agencies?

Associated Press  

Governments and major corporations worldwide are scrambling to see if they, too, were victims of a global cyberespionage campaign that penetrated multiple U.S. government agencies and involved a common software product used by thousands of organizations. The malware, affecting a product made by U.S. company SolarWinds, gave elite hackers remote access into an organization’s networks so they could steal information. “There’s no evidence that this was meant to be destructive,” said Ben Buchanan, Georgetown University cyberespionage expert and author of “The Hacker and The State.” He called the campaign’s scope, “impressive, surprising and alarming.” Its apparent monthslong timeline gave the hackers ample time to extract information from a lot of different targets. “If for many months the Americans couldn’t do anything about it, then, probably, one shouldn’t unfoundedly blame the Russians for everything.” Buchanan, the Georgetown expert, said the hackers were “adept at finding a systemic weakness and then exploiting it quietly for months.” Supporting the consensus in the cyberthreat analysis community that Russians are responsible are the tactics, techniques and procedures used, which bear their digital fingerprints, said Brandon Valeriano, a Marine Corps University technology scholar. An advisory issued by Microsoft, which assisted FireEye in the hack response, said it had “delivered more than 13,000 notifications to customers attacked by nation states over the past two years and observed a rapid increase in sophistication and operational security capabilities.” —— Associated Press reporter Eric Tucker contributed to this report.

History of this topic

White House says at least 8 US telecom firms, dozens of nations impacted by China hacking campaign
2 weeks, 6 days ago
US regulators sue SolarWinds and its security chief for alleged cyber neglect ahead of Russian hack
1 year, 1 month ago
Microsoft: Russian-backed hackers targeting cloud services
3 years, 1 month ago
The Russian hacker group behind the SolarWinds attack is at it again, Microsoft says
3 years, 2 months ago
Microsoft: Russia behind 58% of detected state-backed hacks
3 years, 2 months ago
Russians Tied To The SolarWinds Cyberattack Hacked Federal Prosecutors, DOJ Says
3 years, 4 months ago
Microsoft says new breach discovered in probe of suspected SolarWinds hackers
3 years, 5 months ago
Microsoft Says Suspected SolarWinds Hackers Breached Its Customer Support Tools Also
3 years, 5 months ago
78% companies expect another SolarWinds-style hack, survey finds
3 years, 6 months ago
Russia's SVR hijacked email system of US aid agency to target NGOs, think tanks critical of Putin
3 years, 6 months ago
Biden budget sets aside $750 million for SolarWinds response
3 years, 6 months ago
Microsoft: SolarWinds hackers target 150 orgs with phishing
3 years, 6 months ago
Russian hack targeted USAID, human rights groups, Microsoft says
3 years, 6 months ago
Russian hackers still target U.S., other foreign organisations: U.S. security agencies
3 years, 7 months ago
SolarWinds hacking campaign puts Microsoft in the hot seat
3 years, 8 months ago
SolarWinds hacking campaign puts Microsoft in hot seat
3 years, 8 months ago
Biden Administration Sanctions Russia Over 'Worst Nightmare' Cyberattack : Consider This from NPR : NPR
3 years, 8 months ago
Senators press for more on SolarWinds hack after AP report
3 years, 8 months ago
Hunting the hunters: How Russian hackers targeted US cyber first responders in SolarWinds breach
3 years, 8 months ago
AP sources: SolarWinds hack got emails of top DHS officials
3 years, 8 months ago
China’s Microsoft hack, Russia’s solar winds attack threaten to overwhelm US
3 years, 9 months ago
Accounts of thousands of Microsoft users around the world hacked, attack reportedly linked to China
3 years, 9 months ago
Microsoft failed to shore up defenses that could have limited SolarWinds hack -U.S. senator
3 years, 9 months ago
‘They may be in the system’: Questions remain on SolarWinds hack
3 years, 9 months ago
SolarWinds hack required massive, sophisticated effort
3 years, 10 months ago
State-sponsored cyber attacks have corporates worried
3 years, 10 months ago
Suspected Russian hack fuels new US action on cybersecurity
3 years, 10 months ago
Massive breach fuels calls for U.S. action on cybersecurity
3 years, 10 months ago
SolarWinds hack: Biden administration says investigation is likely to take ‘several months’
3 years, 10 months ago
Suspected Chinese hackers breach US government via SolarWinds bug
3 years, 10 months ago
SolarWinds hackers gave themselves top administrative privileges to spy on victims undetected, DHS says
3 years, 11 months ago
Hackers accessed our Microsoft O365 email server: US DOJ
3 years, 11 months ago
U.S. Justice Department says its emails were breached by SolarWinds hackers
3 years, 11 months ago
US intel agencies say group behind recent government hack ‘likely Russian in origin’
3 years, 11 months ago
Opinion: The SolarWinds hack is stunning. Here’s what should be done
3 years, 11 months ago
Concern mounts over government cyber agency’s struggle to respond to hack fallout
3 years, 11 months ago
SolarWinds hackers saw some of our source code: Microsoft
3 years, 11 months ago
Microsoft says hackers viewed source code, didn’t change it
3 years, 11 months ago
Microsoft says suspected Russian hackers accessed source code
3 years, 11 months ago
SolarWinds hack: Russian cybercriminals attack CrowdStrike, attempt to read emails
3 years, 11 months ago
U.S. cyber agency says SolarWinds hackers are 'impacting' state, local governments
4 years ago
U.S. Cyber Agency: SolarWinds Attack Hitting Local Governments
4 years ago
SolarWinds hack: US reaches out to intelligence alliance partners on suspected Russian hack
4 years ago
Massive SolarWinds hack has big businesses on high alert
4 years ago
Microsoft Confirms It Found Malicious Software From SolarWinds in Its Systems
4 years ago
U.S. cybersecurity agency warns of ‘grave threat’ to computer networks
4 years ago
US govt issues urgent warning against recent cyberattacks, says it's 'a grave risk to the federal government'
4 years ago
Hack against US is ‘grave’ threat, cybersecurity agency says
4 years ago
Microsoft Says 40 Customers Hit By Ongoing Hack Of Government Agencies
4 years ago
US cybersecurity agency warns of 'grave threat' after 'critical infrastructure' hacked
4 years ago

Discover Related