Microsoft uses Orion software, a widely used network management software by Solar Windows, which has been used in suspected Russian attacks on vital US agencies and other targets, according to Tech reportes issued on Friday.
Brad Smith, the Microsoft’s president, explained the attack illuminates the ways the cybersecurity landscape continues to evolve and becomes even more dangerous.
Meanwhile, the hackers exploited Microsoft’s cloud services while avoiding the company’s infrastructure. On other hand, the hackers inserted malicious code into SolarWinds‘ Orion software updates sent to nearly 18,000 customers. It existed in updates released between March and June of this year.
This attackes led to security breaches at numerous U.S. government agencies. Those include the Treasury Department, the National Telecommunications and Information Administration (NTIA) and the Department of Homeland Security (DHS).
Also, the Cozy Bear hacking group, which U.S. authorities suggest gets backing from Russian state intelligence, likely performed the SolarWinds hack.
Noteworthy, Microsoft identified over 40 of its customers targeted by the attack that have been compromised through "additional and sophisticated measures. According to Microsoft, roughly 80 percent of the targeted customers are in the United States, but there are also victims in seven other countries; Canada, Mexico, Belgium, Spain, the United Kingdom, Israel, and the UAE.
Follow the latest news on Google News
