Connect with us

Hi, what are you looking for?

Economy

Microsoft says it found malicious software in its systems

SAN FRANCISCO — Microsoft Corp. said on Thursday it found malicious software in its systems related to a massive hacking campaign disclosed by US officials this week, adding a top technology target to a growing list of attacked government agencies.

The Redmond, Washington, company is a user of Orion, the widely deployed networking management software from SolarWinds Corp., which was used in the suspected Russian attacks on vital US agencies and others.

Microsoft also had its own products leveraged to attack victims, said people familiar with the matter.

“Like other SolarWinds customers, we have been actively looking for indicators of this actor and can confirm that we detected malicious SolarWinds binaries in our environment, which we isolated and removed,” a Microsoft spokesperson said, adding that the company had found “no indications that our systems were used to attack others.”

One of the people familiar with the hacking spree said the hackers made use of Microsoft cloud offerings while avoiding Microsoft’s corporate infrastructure.

Microsoft did not immediately respond to questions about the technique.

Still, another person familiar with the matter said the Department of Homeland Security (DHS) does not believe Microsoft was a key avenue of fresh infection.

Both Microsoft and the DHS, which earlier on Thursday said the hackers used multiple methods of entry, are continuing to investigate.

The Federal Bureau of Investigation (FBI) and other agencies have scheduled a classified briefing for members of Congress Friday.

The US Energy Department also said it has evidence hackers gained access to its networks as part of the campaign. Politico had earlier reported the National Nuclear Security Administration (NNSA), which manages the country’s nuclear weapons stockpile, was targeted.

An Energy Department spokeswoman said malware “has been isolated to business networks only” and has not impacted US national security, including the NNSA.

The DHS said in a bulletin on Thursday the hackers had used other techniques besides corrupting updates of network management software by SolarWinds which is used by hundreds of thousands of companies and government agencies.

CISA urged investigators not to assume their organizations were safe if they did not use recent versions of the SolarWinds software, while also pointing out that the hackers did not exploit every network they gained access too.

CISA said it was continuing to analyze the other avenues used by the attackers. So far, the hackers are known to have at least monitored email or other data within the US departments of Defense, State, Treasury, Homeland Security, and Commerce.

As many as 18,000 Orion customers downloaded the updates that contained a back door, SolarWinds has said. Since the campaign was discovered, software companies have cut off communication from those back doors to the computers maintained by the hackers.

But the attackers might have installed additional ways of maintaining access, CISA said, in what some have called the biggest hack in a decade.

The Department of Justice, FBI, and Defense Department, among others, have moved routine communication onto classified networks that are believed not to have been breached, according to two people briefed on the measures. They are assuming that the non-classified networks have been accessed, the people said.

CISA and private companies including FireEye Inc, which was the first to discover and reveal it had been hacked, have released a series of clues for organizations to look for to see if they have been hit.

But the attackers are very careful and have deleted logs, or electronic footprints, or which files they have accessed, security experts said. That makes it hard to know what has been taken.

Some major companies have said they have “no evidence” that they were penetrated, but in some cases that may only be because the evidence was removed.

In most networks, the attackers would also have been able to create false data, but so far it appears they were interested only in obtaining real data, people tracking the probes said.

Meanwhile, members of Congress are demanding more information about what may have been taken and how, along with who was behind it. The House Homeland Security Committee and Oversight Committee announced an investigation Thursday, while senators pressed to learn whether individual tax information was obtained.

In a statement, President-elect Joseph R. Biden said he would “elevate cybersecurity as an imperative across the government” and “disrupt and deter our adversaries” from undertaking such major hacks. — Joseph Menn/Reuters

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Get the daily email that makes reading the news actually enjoyable. Stay informed and entertained, for free.
Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!

Latest

Economy

Headline inflation stood at 4% in July, the government reported on Thursday. — PHILIPPINE STAR/ MICHAEL VARCAS PHILIPPINE INFLATION eased to a seven-month low...

Economy

ALL COMPANIES included in the Philippine Stock Exchange (PSE) indices will be required to raise their public float level to 20% by December 2022,...

Economy

THE PHILIPPINES should focus on diversifying its economy to produce high-quality jobs and more competitive products, according to the United Nations in the Philippines....

Economy

SAN Miguel Corp. (SMC) returned to profitability to finish the first half with a net income of P29.57 billion, reversing last year’s P3.99-billion loss,...

Economy

AYALA-LED AC Energy Corp. reported an attributable net income of P1.42 billion in the second quarter, down by 28% from P1.97 billion year on...

Economy

PLDT, Inc. saw its attributable net income for the second quarter grow 10.9% to P7.1 billion, as high demand for data and broadband continued....

You May Also Like

Investing

Having a good Instagram marketing agency to back up your Instagram account is an absolute must going into the new year. With competition stronger...

Investing

As a traditionally rigid insurance industry becomes bogged down by antiquated processes and operations, a handful of industry leaders are seeking to shake things...

Economy

US President Joseph R. Biden, Jr., will rely on ally countries to supply the bulk of the metals needed to build electric vehicles and focus on...

Economy

THE Securities and Exchange Commission (SEC) has warned the public from investing or to stop any investment in a group named Maxxprofit Computer Trading...

Disclaimer: SmartRetirementReport.com, its managers, its employees, and assigns (collectively "The Company") do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

Copyright © 2021 SmartRetirementReport. All Rights Reserved.

Get the daily email that makes reading the news actually enjoyable. Stay informed and entertained, for free.



Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!