What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in solarwinds

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

Threatpost editors discuss the SolarWinds hack, healthcare ransomware attacks and other threats that will plague enterprises in 2021. The new year started off with a bang, with the SolarWinds hack revealed in late December acting as a jarring reminder to companies and U.S. government departments alike that cybercriminals continue to successfully . . . Read more

SolarWinds Hires Chris Krebs, Alex Stamos in Wake of Hack

Former CISA director Chris Krebs and former Facebook security exec Alex Stamos have teamed up to create a new consulting group – and have been hired by SolarWinds. SolarWinds, which has been embroiled in a recent, widescale hack, has called in two security powerhouses for help: Former director of the . . . Read more

Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. The U.S. government has identified Russia as the “likely” culprit behind the widespread SolarWinds cyberattack that has so far affected multiple federal agencies and private-sector companies. Cyberespionage is cited as the motivation behind the attack, which . . . Read more

Sunburst’s C2 Secrets Reveal Second-Stage SolarWinds Victims

Examining the backdoor’s DNS communications led researchers to find a government agency and a big U.S. telco that were flagged for further exploitation in the spy campaign. More information has come to light about the Sunburst backdoor that could help defenders get a better handle on the scope of the . . . Read more

Microsoft Caught Up in SolarWinds Spy Effort, Joining Federal Agencies

The ongoing, growing campaign is “effectively an attack on the United States and its government and other critical institutions,” Microsoft warned. Microsoft has become the latest victim of the ever-widening SolarWinds-driven cyberattack that has impacted rafts of federal agencies and tech targets. Its president, Brad Smith, warned late Thursday to . . . Read more

Nuclear Weapons Agency Hacked in Widening Cyberattack – Report

Sources said the DoE suffered “damage” in the attack, which also likely extends beyond the initially known SolarWinds Orion attack vector. The Energy Department and its National Nuclear Security Administration (NNSA), which is the agency that maintains the U.S. nuclear stockpile, have been compromised as part of the widespread cyberattack . . . Read more

The SolarWinds Perfect Storm: Default Password, Access Sales and More

Meanwhile, Microsoft and other vendors are quickly moving to block the Sunburst backdoor used in the attack. A perfect storm may have come together to make SolarWinds such a successful attack vector for the global supply-chain cyberattack discovered this week – including its use of a default password (“SolarWinds123”) that . . . Read more

DHS Among Those Hit in Sophisticated Cyberattack by Foreign Adversaries – Report

The attack was mounted via SolarWinds Orion, in a manual and targeted supply-chain effort. The U.S. Department of Homeland Security (DHS), plus the Treasury and Commerce departments, have been hacked in an attack related to the FireEye compromise last week, according to reports. In addition, defense contractors and enterprises were . . . Read more