Wednesday, December 16, 2020

Solar Winds is Hacked by The Russians, US Assets targeted

 Russian hackers in March of 2020 inserted code into Solar Winds software without the company knowing it. Solar Winds is a Texas based company with customers which are public and private firms who's emails were monitored for an extended period of time. The code was inserted in these systems when the updates took place and one of the biggest cyber intrusions ever was underway. The US Treasury and Commerce Departments were targeted.

Cybersecurity Experts FireEye first found the malware in their systems earlier this month. Embarrassing for a cybersecurity firm to admit, but the hackers gained acces via Solar Winds' Security suite Orion program's back door. .FireEye's internal investigating showed how damaging the attack was. 

Solar Winds' own literature shows why

 

Solar Winds comprehensive products and services are used by over 300,000 customers world wide including Military, Fortune 500 companies, government agencies and educational institutions. Our customer list includes:

More than 425 of the US Fortune 500

All 10 of the top 10 US telecommunications companies 

All 5 branches of the US Military

The US Pentagon, State Department, NASA, NSA, Postal Service, NOAA, Department of Justice and the Office of the President of the United States. 

All 5 of the top 5 US Accounting firms

Hundreds of Universities and Colleges worldwide

 

It hasn't been revealed which of Solar Winds' clients were actually attacked, but they've stated roughly 18,000 clients could have been affected.  

There will be more to this story in the coming days. 


-katykarter