What We Know About Russia's Latest Alleged Hack of the U.S. Government

DeathMonkey writes:

Russian government hackers are believed to be responsible for infiltrating computer systems at multiple U.S. agencies in recent months, including the Pentagon, the Department of Homeland Security and the Department of the Treasury, according to government agencies and media reports. Russia has denied the accusations.

The hack hinged on a vulnerability on a software monitoring product from SolarWinds, a company based in Austin, Texas. The company works widely with the federal government and hundreds of large U.S. companies. Many use SolarWinds' Orion software to monitor their computer networks.

SolarWinds has some 300,000 customers but says "fewer than 18,000" installed the version of its Orion products earlier this year that now appears to have been compromised.

So far, the list of affected U.S. government entities includes the Commerce Department, Department of Homeland Security, the Pentagon, the Treasury Department, the U.S. Postal Service and the National Institutes of Health.

The incident is the latest in what has become a long list of suspected Russian electronic incursions into other nations - particularly the U.S. - under President Vladimir Putin. Multiple countries say Russia was previously found to have used hackers, bots and other means in attempts to influence elections in the U.S. and elsewhere.

Also at Krebs on Security, BBC, Mashable, and cnet.

What We Know About Russia's Latest Alleged Hack Of The U.S. Government

Original Submission

Read more of this story at SoylentNews.