Russia’s hacking frenzy is a reckoning

by
WIRED
from Ars Technica - All content on (#5BWG8)
Security_russianhack_1208902961-800x533.

Enlarge / The attack hit multiple US agencies-and a full assessment of the damage may still be months away. (credit: Andrew Harrer | Bloomberg | Getty Images)

Last week, several major United States government agencies-including the Departments of Homeland Security, Commerce, Treasury, and State-discovered that their digital systems had been breached by Russian hackers in a months-long espionage operation. The breadth and depth of the attacks will take months, if not longer, to fully understand. But it's already clear that they represent a moment of reckoning, both for the federal government and the IT industry that supplies it.

As far back as March, Russian hackers apparently compromised otherwise mundane software updates for a widely used network monitoring tool, SolarWinds Orion. By gaining the ability to modify and control this trusted code, the attackers could distribute their malware to a vast array of customers without detection. Such "supply chain" attacks have been used in government espionage and destructive hacking before, including by Russia. But the SolarWinds incident underscores the impossibly high stakes of these incidents-and how little has been done to prevent them.

Read 13 remaining paragraphs | Comments

index?i=gWlkPr89JxI:RvUZQKKFyHs:V_sGLiPB index?i=gWlkPr89JxI:RvUZQKKFyHs:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments