Do Not Sell My Personal Information
When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary
Malware which is impossible to remove
Microsoft has admitted that the alleged Russian hackers behind the SolarWinds attack that affected several top-notch enterprises, attempted to go beyond just the presence of malicious SolarWinds code in its environment.
Microsoft has discovered that its systems were infiltrated beyond just the presence of malicious SolarWinds code. In a Security Response Center update, the tech giant said that hackers were able to view source code in a number of source code repositories . We detected unusual activity with a small number of internal accounts and upon review, we discovered one account had been used to view source code in a number of source code repositories, the company said in the update late on Thursday.
FireEye CEO Kevin Mandia, seen giving a cyber lecture at the U.S. Naval Academy, was the first to sound the alarm bells about the SolarWinds hack, after detecting a breach in FireEye’s own systems. (United States Naval Academy)
What might go down as the most consequential story of the year for the cybersecurity community only surfaced in December, despite the alarming realization that the SolarWinds supply chain hacking took place months before.
Cybersecurity experts predict years of clean up, both physical and political, from the infiltration attributed to Russia, which pushed malicious updates for the popular SolarWinds Orion IT platform.
Microsoft says hackers were able to see some of its source code
“Viewing source code isn’t tied to elevation of risk,” company says
Share this story
As Microsoft continues to investigate the massive SolarWinds attack, the company says it has discovered that its systems were infiltrated “beyond just the presence of malicious SolarWinds code.” In an update from its Security Response Center, Microsoft says that hackers were able to “view source code in a number of source code repositories,” but that the hacked account granting such access didn’t have permission to modify any code or systems.
While Microsoft points to “a very sophisticated nation-state actor” as the culprit, the US government and cybersecurity officials have implicated Russia as the architects of the overall SolarWinds attack. The attack exposed an extensive list of sensitive organizations, and today’s disclosure from Microsoft shows we’ll still be unraveling the attack’s implications for w
Published December 30, 2020 •
Updated on December 30, 2020 at 7:42 am
Bronte Wittpenn | Bloomberg | Getty Images
Big cyberattacks can start to seem like routine annoyances.
But anyone tempted to dismiss the recent SolarWinds and FireEye breaches as routine should think again.
At the federal level, we re still dragging our feet on cybersecurity.
Marriott, Equifax, the Office of Personnel Management and the recent U.S. federal agencies the big cyberattacks keep coming. They can start to seem like routine annoyances, like fender benders on the freeway. But anyone tempted to dismiss the recent SolarWinds and FireEye breaches as routine should think again.
This is no fender bender. It is a 75-car, road-closing pileup, and we know where the fault lies. The truth is, at the federal level, we re still dragging our feet on cybersecurity. Even though cybercrime now has a permanent roost atop the US intelligence community s annual Worldwide Threat Assessment report, there s a pro