A massive Cyber Attack In US With A Novel Set Of Tools: Explained

Advertisement

A cyber attack recently discovered in the United States, the ‘SolarWinds hack’ has emerged as one of the largest ever aimed against the US government, its agencies, and many other private enterprises. It is, in truth, possibly a global cyberattack.

The US cybersecurity company FireEye first discovered it, and more advances have continued to come to light every day since then. The sheer extent of the cyber-attack remains unclear, but it is suspected that the US Treasury, the Department of Homeland Security, the Department of Commerce, and parts of the Pentagon were all affected.

Advertisement

Russia was named for the attack in an opinion piece written for The New York Times by Thomas P Bossert, who was President Donald Trump’s Homeland Security Advisor. He wrote “evidence to the Russian intelligence agency known as the SVR, whose trade is among the most advanced in the world, in the SolarWinds attack points.” The Kremlin has rejected its participation.

Just how bad is that hack that hit US government agencies? | TechCrunch
TechCrunch

About Cyber Attack: ‘SolarWinds hack’

Technically, news of the cyber attack initially spread on December 8, when FireEye posted a blog reporting an attack on its networks. The business helps with many major private corporations and federal government agencies’ security management.

Advertisement

In a blogpost, FireEye CEO Kevin Mandia wrote that the company was “attacked by a highly sophisticated threat actor,” calling it a state-sponsored assault, while Russia was not identified. It said the attack was carried out “with top-tier offensive capabilities” by a country, and “the attacker primarily pursued data related to certain government customers.” It also said that the attackers’ techniques were novel.

Then on December 13, FireEye said that the cyberattack, which is called the UNC2452 operation, was not limited to the business, but targeted numerous “public and private organizations around the world.” The campaign probably started in March 2020 and has been running for months, the post said. Worse, considering the magnitude of the attack is still being uncovered, the amount of data stolen or compromised is still uncertain. “lateral movement and data theft” took place after networks were hacked.

Many US Government Agencies And Companies Get Attacked: How?

This is called a ‘Supply Chain’ attack: Instead of targeting the federal government or the network of a private company directly, the hackers threaten a third-party provider that provides them with software. In this case, the aim was software for IT management called Orion, supplied by SolarWinds, a Texas-based company.

Orion has been a dominant customer of SolarWinds software, which comprises more than 33,000 businesses.

Advertisement
Parth Dubey
Parth Dubey
I am Parth Dubey, currently an undergraduate. I have been working as a content writer for the past 6 months and have worked in various fields with many people and firms. I firmly believe that writing is not just about money making or attracting people, it's more about knowledge and information, along with feelings.

Must Read

Indian Economy may face a 25% Contraction in Fiscal

The Indian economy is not recovering as fast as the government claims and the country’s economy may contract 25 percent in the current financial...

The Day 2 of Vaccination Drive Successful

Piramal Group is all set to Bag DHFL

Adblock Detected!

Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by whitelisting our website.