Microsoft has warned of increased credential attacks by #NOBELIUM or Midnight Blizzard hackers (known for the #SolarWinds hack) against governments, NGOs, and the defence sector.

https://hackread.com/microsoft-nobelium-credential-attacks-defense/

#Security #Cybersecurity #Russia #CyberAttack

Referenced link: https://thehackernews.com/2022/11/hackers-using-rogue-versions-of-keepass.html
Originally posted by The Hacker News / @TheHackersNews@twitter.com: https://twitter.com/TheHackersNews/status/1588103124119564288#m

Hackers behind RomCom RAT attacks are using rogue versions of popular software such as #SolarWinds Network Performance Monitor, KeePass password manager, and PDF Reader Pro to spread the #malware.

Read: https://thehackernews.com/2022/11/hackers-using-rogue-versions-of-keepass.html

#infosec #hacking #cybersecurity

#Microsoft says Chinese hackers exploited the recently disclosed zero-day #vulnerability in #SolarWinds Serv-U FTP software to attack U.S. defence and #software companies.

https://t.co/bfO5sb6Eur

#infosec #cybersecurity #hacking #malware #ZeroDay

#Microsoft has found a new critical zero-day RCE #vulnerability (CVE-2021-35211) affecting #SolarWinds Serv-U that is being actively exploited by hackers.

https://t.co/CXNLKDGQWn

#infosec #hacking #cyberattack #cybersecurity

The U.S. Department of Justice has seized two domain names used by #SolarWinds hackers in a recent cyber espionage campaign targeting government agencies, think tanks, and humanitarian groups.

https://thehackernews.com/2021/06/us-seizes-domains-used-by-solarwinds.html

#cyberattack #hacking #infosec #cybersecurity

Unwilling to Be Candid About his Cash Cow, #Windows — which is Compromised Proprietary CrapShit by Design — Microsoft President Blames Russia Intelligence Agency for #SolarWinds Hack.
https://sputniknews.com/us/202102231082165100-microsoft-president-blames-russia-intelligence-agency-for-solarwinds-hack/

In a joint statement, FBI, CISA, NSA officially blamed the Russian government for orchestrating the massive #SolarWinds supply chain cyberattack.

https://thehackernews.com/2021/01/fbi-cisa-nsa-officially-blames-russia.html

#infosec #cybersecurity

Microsoft finds additional malware in #SolarWinds software, suggesting that a second hacker group may have also breached the IT company.

Read details: https://thehackernews.com/2020/12/a-second-hacker-group-may-have-also.html

#infosec #cybersecurity #malware #cyberattack #datasecurity #cyberespionage

RT @jc_stubbs@twitter.com

Wow. Missed this buried at the bottom of Microsoft’s blog yesterday. While investigating the #SolarWinds hack they found the company’s software had been compromised by a second backdoor, likely by a different group of hackers

🐦🔗: https://twitter.com/jc_stubbs/status/1340283242902147072

"The backdoor, which FireEye identified as 'Sunburst,' uses a dynamic link library (DLL) component in the Orion software framework to communicate with third-party command-and-control servers outside the victim's network. The component, SolarWinds.Orion.Core.BusinessLayer.dll, is digitally signed by SolarWinds and therefore looks like a legitimate piece of the vendor's proprietary software code."
#SolarWinds #proprietary #hack
https://searchsecurity.techtarget.com/news/252493603/SolarWinds-backdoor-used-in-nation-state-cyber-attacks

Nearly 18,000 customers of #SolarWinds may have installed the backdoored version of the IT software, including government agencies, the company disclosed in an SEC filing.

https://thehackernews.com/2020/12/nearly-18000-solarwinds-customers.html

#infosec #cyberattack #cybersecurity

RT @DAlperovitch@twitter.com

Some other thoughts on this #SolarWinds supply chain hack.

We don’t yet know if every customer of SolarWinds who is autoupdating is compromised (likely not given the overall stealthiness of the intrusions to date - adversary most likely down selected to targets of interest) 1/

🐦🔗: https://twitter.com/DAlperovitch/status/1338297092612239360

According to FireEye, attackers tampered with a #software update released by #SolarWinds, which eventually led to the compromise of numerous public and private organizations around the world with #SUNBURST backdoor.

https://thehackernews.com/2020/12/us-agencies-and-fireeye-were-hacked.html

#infosecurity

URGENT

Hackers exploit #Solorigate supply-chain backdoor in #SolarWinds enterprise monitoring software to breach US Treasury, Commerce Department, other government agencies, and cybersecurity firm #FireEye.

https://thehackernews.com/2020/12/us-agencies-and-fireeye-were-hacked.html

#infosec #cybersecurity #sysadmin