Security News > 2020 > December > FBI, CISA officially confirm US govt hacks after SolarWinds breach
The compromise of multiple US federal networks following the SolarWinds breach was officially confirmed for the first time in a joint statement released earlier today by the FBI, DHS-CISA, and the Office of the Director of National Intelligence.
The National Security Council has established a Cyber Unified Coordination Group following the SolarWinds breach to help the intelligence agencies better coordinate the US government's response efforts surrounding this ongoing espionage campaign.
Yesterday, BleepingComputer also reported that Microsoft, FireEye, and GoDaddy collaborated to create a kill switch for the SolarWinds backdoor deployed on compromised networks to force the malware to terminate itself.
The list of victims includes the US Treasury, the US Department of State, US NTIA, US NIH, DHS-CISA, and the US Department of Homeland Security.
SolarWinds' customer listing [1, 2] includes over 425 of the US Fortune 500, all top ten US telecom companies, the US Military, the US Pentagon, the State Department, NASA, NSA, Postal Service, NOAA, the US Department of Justice, and the Office of the President of the United States.
News URL
Related news
- CISA says recent government hack limited to US Treasury (source)
- China-Linked Cyber Threat Group Hacks US Treasury Department (source)
- CISA says Treasury was the only US agency breached via BeyondTrust (source)
- US Treasury hack linked to Silk Typhoon Chinese state hackers (source)
- Largest US addiction treatment provider notifies patients of data breach (source)
- FBI wipes Chinese PlugX malware from over 4,000 US computers (source)
- FBI deletes Chinese PlugX malware from thousands of US computers (source)
- China's Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says (source)
- US sanctions Chinese firm, hacker behind telecom and Treasury hacks (source)
- CISA: Hackers still exploiting older Ivanti bugs to breach networks (source)