SolarWinds: Hey, only as many as 18,000 customers installed backdoored software linked to US govt hacks

2020-12-15 03:14

As the debris from the explosive SolarWinds hack continues to fly, it has been a busy 48 hours as everyone scrambles to find out if, like various US government bodies, they've been caught in the blast.

Fast forward to the weekend, and various US government organizations discovered they too had been hacked, with Russia's APT29 aka Cozy Bear team suspected by officials.

Cryptically, FireEye has glued together its early-December public statements that it was hacked, and its investigation into what it says is "a global campaign that introduces a compromise into the networks of public and private organizations through the software supply chain."

We asked FireEye straight up if it was hacked via a SolarWinds update, and a spokesperson told us simply: "Our investigation is still ongoing."

It's possible those hacks may have been purposefully noisy efforts to draw attention away from the Orion hack.

News URL

https://go.theregister.com/feed/www.theregister.com/2020/12/15/solar_winds_update/

#hack #solarwinds #US