[ad_1]
Unfortunately, it took 3 weeks after the discovery of such a significant intrusion for this Administration to issue an attribution attempt. Hopefully, we start to see a public statement of US policy towards indiscriminate supply chain infiltration like this in the future.
– Mark Warner (@MarkWarner) January 5, 2021
Authorities estimate that around 18,000 “public and private sector customers” of SolarWinds products have been affected by the hacking. They added that a “much smaller number” was then subject to “tracking activity” in their systems, which included “less than” 10 government agencies. The multi-agency group says it is working to investigate and help where it can, with the FBI scrambling to identify victims and hackers. CISA, meanwhile, will offer a tool to help victims detect malicious activity resulting from the hack.
SolarWinds is a network monitoring company with a product called Orion, which hackers managed to breach at one point. March. The list of companies and government agencies that used Orion, however, included names like the United States. Nuclear security administration, Department of Energy, Security Company CrowdStrike, without speaking about Microsoft. One of the reasons the attack was so widespread was due to the failure of several early warning systems.
In the statement, the agencies say that recovering the remains of this hack will require a “sustained and dedicated effort to remedy it.”
[ad_2]
