SolarWinds hackers breach new victims, including a Microsoft support agent

by
Dan Goodin
from Ars Technica - All content on (#5KJGB)
solarwinds-800x534.jpeg

Enlarge (credit: Getty Images)

The nation-state hackers who orchestrated the SolarWinds supply chain attack compromised a Microsoft worker's computer and used the access to launch targeted attacks against company customers, Microsoft said in a terse statement published late on a Friday afternoon.

The hacking group also compromised three entities using password-spraying and brute-force techniques, which gain unauthorized access to accounts by bombarding login servers with large numbers of login guesses. With the exception of the three undisclosed entities, Microsoft said, the password-spraying campaign was mostly unsuccessful." Microsoft has since notified all targets, whether attacks were successful or not.

Enter Nobelium

The discoveries came in Microsoft's continued investigation into Nobelium, Microsoft's name for the sophisticated hacking group that used SolarWinds software updates and other means to compromise networks belonging to nine US agencies and 100 private companies. The federal government has said Nobelium is part of the Russian government's Federal Security Service.

Read 11 remaining paragraphs | Comments

index?i=I5y0Ma2K_2w:_Fi243ALHTw:V_sGLiPB index?i=I5y0Ma2K_2w:_Fi243ALHTw:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments