SolarWinds hack just keeps getting more wild


Illustration for article named SolarWinds hack is getting more wildPhoto: Andrew CABALLERO-REYNOLDS / AFP ()Getty Images)

Now Chinese are also included. This is one of the newest allegations Solar system scandal, The supply chain “Cyber ​​Pearl Harbor” which seems to have covered the entire US government, as well as the private sector.

While officer Said earlier Russian hackers were “likely” behind widespread penetration into the federal network, a new story now claiming that China’s hackers exploited a different vulnerability in the same software to gain entry into a payroll agency within the US Department of Agriculture Can.

According to Reuters, Anonymous sources say that a different threat actor managed to exploit SolarWind software to worsen his way into a federal payroll agency with the National Finance Center, USDA. News organization report:

The software flaw exploited by the suspected Chinese group is different from the one the United States has accused Russian government operators of hijacking the company’s Orion network monitoring software, including sensitive federal agencies, to compromise 18,000 SolarWinds customers.

It is the latest in a seemingly endless flood of news involved in a massive cyber intrusion scandal. Investigators have tried to understand the extent of the violation, but they are struggling. Case in point: recent discoveries Nearly a third of the victims The so-called “SolarWinds” scams were not actually customers of SolarWinds and were, therefore, compromised by other (hitherto unknown) means.

The complete defeat was initially discovered in December. If you have been sleeping since then, here is the run-down: Investigators found that Hackers had infiltrated the government, Fortune 500 companies, and other entities using intrusive malware that had been pasted into software updates for SolarWinds Orion, a popular IT management program.

Other recent updates include:

  • The new CEO of SolarWind, Sudhakar Ramakrishna, claimed the hackers had been reading the company’s emails for at least nine months. “Some email accounts were compromised. This led him to compromise other email accounts and as a result of our wider [Office] 365 atmosphere was compromised by CEO Told the Wall Street Journal.
  • Theounding company has also announced that it has reduced three recently discovered risks. Two of them were in the original Orion software that led to network break-ins at federal agencies; The other was in a different product, SolarWinds Serv-U FTP. This all-U vulnerability would allow “trivial remote code execution with high privileges,” Writes thrustpost.
  • Alejandro Mayorkas, the new head of the Department of Homeland Security, Has said He will investigate the hack in its entirety. He also promised to “enhance the government’s overall defensive capabilities through a review of the government’s Einstein incident detection program and the CISA’s continuing diagnosis and mitigation program to identify cyber attacks.” Are really effective in addressing. “

.