Hackers hit US government agencies in wave of cyberattacks

[Hanno Labuschagne]

Hackers hit US government agencies in wave of cyberattacks

U.S. government agencies were hit by a “global intrusion campaign” of cyber-attacks that exploited a flaw in the update of a software company, according to cyber-security firm FireEye, which discovered the hack.

“We have identified a global campaign that introduces a compromise into the networks of public and private organizations through the software supply chain,” FireEye said in a blog post late Sunday.

“This compromise is delivered through updates to a widely-used IT infrastructure management software -- the Orion network monitoring product from SolarWinds.”

[Bloomberg]

 

[system32]

U.S. government agencies were hit by a “global intrusion campaign” of cyber-attacks that exploited a flaw in the update of a software company, according to cyber-security firm FireEye, which discovered the hack.

I see FireEye blaming SolarWinds, although FireEye tools were stolen 2 weeks ago and said tools probably used in this latest hack.

Just "we don't need evidence" blame the Chinese so we can then have a scapegoat
</conspiracy theory>

 

[Sinbad]

I see FireEye blaming SolarWinds, although FireEye tools were stolen 2 weeks ago and said tools probably used in this latest hack.

Just "we don't need evidence" blame the Chinese so we can then have a scapegoat

No, the same compromise was used on both fire eye and the government.

SolarWinds update mechanism was compromised and Trojans were inserted.

 

[Realmrbean]

"hacking group backed by the Russian government is suspected of being behind the breach"

Here we go again. another Operation Mockingbird and mybroadband is unwillingly part of it.

 

[Gordon_R]

More agencies owning up to breaches:

US cyber-attack: US energy department confirms it was hit by Sunburst hack

The agency is responsible for managing nuclear weapons, but said their security was not affected.

www.bbc.com

 

[DailyTech]

again ?