Security News > 2021 > February > Microsoft: Solorigate attackers grabbed Azure, Intune, Exchange component source code

Microsoft has completed its internal investigation about the Solorigate security incident, and has discovered that the attackers were very interested in the code of various Microsoft solutions.

The attackers viewed some files here and there, but they also managed to download source code from a "Small number of repositories," and this includes the code for some important Microsoft Azure components.

Microsoft made sure to point out that they have found no evidence of the attackers accessing production services or customer data, or of them having managed to use systems at Microsoft to mount attacks against other targets, gain access to privileged credentials or leverage the SAML techniques against the company's corporate domains.

On the other hand, the attackers managed to view files from a variety of Microsoft source code repositories, and to download source code of a small subset of Azure components, as well as Intune and Exchange components.

SonicWall has released new firmware versions for both 10.x and 9.x code on the SMA 100 series products.

The new SMA 10.2 firmware includes code-hardening fixes identified during an internal code audit, rollup of customer issue fixes not included in the Feb. 3 patch, general performance enhancements, and previous SMA 100 series zero-day fixes posted on Feb. The new 9.0 firmware includes code-hardening fixes identified during an internal code audit.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/ldRY3IxO7C4/