Microsoft was also a victim of the SolarWinds supply chain hack

2020-12-18 10:11

Microsoft has confirmed that it, too, is among the companies who have downloaded the compromised SolarWinds Orion updates, but that they have isolated and removed them.

"While investigations continue, Microsoft has identified and has been working this week to notify more than 40 customers that the attackers targeted more precisely and compromised through additional and sophisticated measures," Smith said.

According to one of Reuters' sources, the SolarWinds hackersused Microsoft cloud offerings, and the NSA has published a security advisory explaining how they abused federated authentication environments to access protected data.

Simultaneously, CISA has published a security alert in which it said that "The SolarWinds Orion supply chain compromise is not the only initial infection vector this APT actor leveraged." So, the fact an organization did not use SolarWinds' software does not immediately mean that it hasn't been targeted.

The SolarWinds and all the other associated hacks should definitely be a wake up call for the US. "As much as anything, this attack provides a moment of reckoning. It requires that we look with clear eyes at the growing threats we face and commit to more effective and collaborative leadership by the government and the tech sector in the United States to spearhead a strong and coordinated global cybersecurity response," Smith noted.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/vcQXyYlFqNE/

#hack #microsoft #solarwinds #supplychain

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		706	781	4550	4600	3628	13559
Solarwinds		56	33	102	81	51	267