Dec 17, 2020
The cyber-attack that hit several US government agencies this week could be much more widespread than previously thought.
SolarWinds, the company whose network monitoring software was compromised to launch the attack, has issued a security advisory for all of its users of its Orion Platform versions 2019.4 HF 5, 2020.2 with no hotfix installed, or with 2020.2 HF 1.
“SolarWinds has been made aware of a cyberattack to our systems that inserted a vulnerability within our SolarWinds Orion Platform software builds for versions 2019.4 HF 5, 2020.2 with no hotfix installed, and 2020.2 HF 1, which, if present and activated, could potentially allow an attacker to compromise the server on which the Orion products run.
Washington Officials Scrambling to Address Vulnerabilities in Wake of Federal Hacking Breach chronline.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from chronline.com Daily Mail and Mail on Sunday newspapers.
Washington Officials Work on Vulnerabilities After Federal Hack
Washington state is responding to known security vulnerabilities to its systems after the federal government issued warnings that software had been breached in what could have been an attack by Russian hackers. by Joseph O Sullivan, The Seattle Times / December 16, 2020 Shutterstock
(TNS) The agency that handles technology for
Washington state government is responding to known security vulnerabilities to its systems after the federal government issued warnings that software had been breached in what could have been an attack by Russian hackers.
Washington
WaTech, is responding to the warning by the
U.S. Cybersecurity and Infrastructure Security Agency (CISA), according to the office of Gov.
State officials scrambling to address vulnerabilities in wake of federal hacking breach wenatcheeworld.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from wenatcheeworld.com Daily Mail and Mail on Sunday newspapers.
Microsoft flags nation-state cyber threat escalation
Actor’s toolkit includes malicious code in the SolarWinds Orion product Credit: Dreamstime
Microsoft has flagged increased activities from what it describes as a sophisticated threat actor that is focused on high-value targets such as government agencies and cyber security companies.
“We believe this is nation-state activity at significant scale, aimed at both the government and private sector,” Microsoft Threat Intelligence Centre distinguished engineer John Lambert said in a blog post.
“While we aren’t sharing any details specific to individual organisations, it is important for us to share greater detail about some of the threat activity we’ve uncovered over the past weeks, along with guidance that security industry practitioners can use to find and mitigate potential malicious activity,” he added.