Attribution of the attacking actor

Retrieved 2024-01-20

Microsoft executive emails hacked by Russian intelligence group

Microsoft says Russia-linked group hacked employee emails (The Japan Times)

Retrieved 2024-01-19

Microsoft ‘senior leadership’ emails accessed by Russian SolarWinds hackers (Verge)

Microsoft says state-backed Russian hackers accessed emails of senior leadership team members (ABC News)

Microsoft says Russian hackers stole email from its executives (wapo)

Inline XBRL Viewer

date: 2024-01 (19 flags: Microsoft, overhaul, attach, attribution, breach, passwords, disclosure)

Microsoft says exec emails accessed in hack by Russian group (GeekWire)

Microsoft Executives’ Emails Hacked by Group Tied to Russian Intelligence (nyt)

Russian Espionage Group Tapped Microsoft Corporate E-Mails - (Redmondmag.com)

Microsoft Executive Emails Hacked By Russian Intelligence Group: Company Confirms Security Breach, Assures No Impact On Customer Data - Microsoft (NASDAQ:MSFT) (Benzinga)

Microsoft's Top Execs' Emails Breached in Sophisticated Russia (Linked APT Attack)

Retrieved 2021-12-23

White House national security adviser asks software companies to discuss cybersecurity (Reuters)

White House national security adviser asks software companies to discuss cybersecurity

White House national security adviser asks software ...

Retrieved 2021-12-17

The new PseudoManuscrypt malware puts over 35,000 PCs at risk (TheDigitalHacker)

Retrieved 2021-12-15

Nobelium gang malware evolves one year after SolarWinds

Retrieved 2021-12-13

Did a Russian Cyberattack Affect the Election? Officials Couldn't Be Sure

Retrieved 2021-12-08

A Year After the SolarWinds Hack, Supply Chain Threats Still Loom (WIRED)

Retrieved 2021-12-07

SolarWinds Attackers Spotted Using New Tactics, Malware (tpost)

Retrieved 2021-12-06

SolarWinds hackers have a whole bag of new tricks for mass compromise attacks (ars)

Russian group behind SolarWinds incident ramping up hacking efforts, analysis says (hill)

SolarWinds hackers kept busy in the year since the seminal hack, Mandiant finds

Suspected Russian Activity Targeting Government and Business Entities Around the Globe (Mandiant)

Russian Actors Behind SolarWinds Attack Hit Global Business & Government Targets

SolarWinds hackers have been quietly targeting governments, cloud providers (scmedia)

Mandiant: SolarWinds Attackers Continue to Innovate

The Microsoft paradox: Contributing to cyber threats and monetizing the cure (Fortune)

Retrieved 2021-11-06

Warning as Microsoft malware attack 'creates backdoor for hackers' to enter servers

Retrieved 2021-10-10

Microsoft Says Russia Behind Over 50% Of State (Sponsored Cyber Hacks)

Retrieved 2021-10-08

Hackers of SolarWinds stole data on U.S. sanctions policy, intelligence probes (Reuters)

Microsoft: Russia Behind 58% of Detected State (Backed Hacks)

Nobelium Makes Russia Leader in Cyberattacks (BankInfoSecurity)

Retrieved 2021-10-07

Russian hackers behind SolarWinds hack trying to infiltrate US and European government networks - WRCBtv.com | #government | #hacking (#cyberattack - National Cyber Security News Today)

Hackers in SolarWinds breach stole data on U.S. sanctions policy, intelligence probes -sources (National Post)

Hackers in SolarWinds breach stole data on U.S. sanctions policy, intelligence probes -sources (Nasdaq)

Retrieved 2021-10-06

Russian hackers behind SolarWinds hack are trying to infiltrate US and European government networks (CNNPolitics)

Retrieved 2021-09-28

SolarWinds hackers Nobelium spotted using a new backdoor

Microsoft Details FoggyWeb Backdoor Used by SolarWinds Hackers (SecurityWeek.Com)

Russia (Linked Nobelium Deploying New 'FoggyWeb' Malware)

How one red team exercise averted a new SolarWinds (style attack)

Retrieved 2021-09-24

EU 'denounces' Russian malicious cyber activity aimed at member states (hill)

Retrieved 2021-09-22

APT focus: ‘Noisy’ Russian hacking crews are among the world’s most sophisticated (The Daily Swig)

Retrieved 2021-09-07

Inside the response to the massive Russian SolarWinds hack (Axios)

Retrieved 2021-09-06

Microsoft Reveals The Real Culprits Behind SolarWinds Serv-U SSH-0 Day Attack (Cyberintel Magazine)

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack (News Nation USA)

Retrieved 2021-09-04

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0 (Day Attack)

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack (The Cyber Security News)

Autodesk Disclosed it was Targeted in SolarWinds Hack (IT Security News)

Autodesk Says Company Was Targeted by SolarWinds Attackers - Latest Hacking News Today (HakTechs)

Retrieved 2021-09-02

A deep-dive into the SolarWinds Serv-U SSH vulnerability (Microsoft Security Blog)

Retrieved 2021-08-27

An Update on Recent Major Breaches (Cyber Security Hub)

Retrieved 2021-08-16

Hackers Linked to SolarWinds Return With Phishing Attack, Microsoft Says | #cybersecurity (#cyberattack - National Cyber Security News Today)

Retrieved 2021-08-02

Microsoft blames a Chinese hacker group for the new SolarWinds attack (List23: Latest U.S. News & Breaking World News)

Retrieved 2021-07-24

After failing to dissuade cyber-attacks, America looks to its friends for help (The Economist)

House GOP calls for Biden to sanction China over hacks

Retrieved 2021-07-19

Biden administration to blame hackers tied to China for Microsoft cyberattack spree

U.S., allies say Chinese intelligence service behind massive Microsoft hack (Washington Times)

US and allies accuse China of hacking campaign

US and allies accuse Chinese government of masterminding Microsoft Exchange cyberattack (Sports Grind Entertainment)

Biden Administration Blames Hackers Tied to China for Microsoft Cyberattack Spree (WSJ)

Retrieved 2021-07-17

Microsoft suspects hacker attacks on SolarWinds in another country

Retrieved 2021-07-15

Chinese hackers behind new SolarWinds software attack: Microsoft

Microsoft: SolarWinds cyberattack operated by hackers from China: Microsoft, IT Security News, ET CISO

Daily Roundup: SolarWinds Patches Critical Zero-Day Bug (Opera News)

According to Microsoft, Chinese hackers used a SolarWinds exploit to carry out attacks

Retrieved 2021-07-14

Chinese threat actor exploited zero-day SolarWinds (ExBulletin)

SolarWinds Patches Critical Zero-Day Bug Amid Targeted Attacks (SDxCentral)

Retrieved 2021-07-13

SolarWinds 0-day gave Chinese hackers privileged access to customer servers (ars)

Chinese hacking group DEV-0322 behind Solarwinds Serv (U 0day attacksSecurity Affairs)

Retrieved 2021-07-12

SolarWinds releases security advisory after Microsoft discovers vulnerability (ZDNet)

Retrieved 2021-07-08

Three new security plunders: Microsoft said it’s the same group behind SolarWinds hack

Retrieved 2021-07-05

SolarWinds: How Russian spies hacked the Justice, State, Treasury, Energy and Commerce Departments

Retrieved 2021-07-02

Solar Winds Hackers Continue To Cause Grief (Cyber Security Hub)

China Likely Outed Soon For Exchange Hacks - Breaking Defense Breaking Defense (Defense industry news, analysis and commentary)

US, UK warn about Russia's brute force cyber campaign (Illinois News Today)

Retrieved 2021-07-01

Microsoft Customers Warned of Targeted Scams by NOBELLIUM (Data Privacy + Cybersecurity Insider)

Retrieved 2021-06-30

SolarWinds Investigation Leads Microsoft to Another Security Breach Discovery (FindBiometrics)

SolarWinds Hackers Breach Microsoft Customer Support to Target its Customers (NY Press News)

NSA discloses hacking methods it says are used by Russia (The Seattle Times)

Retrieved 2021-06-29

Administration to release attribution for Microsoft vulnerabilities in 'coming weeks' (hill)

SolarWinds Hackers Continue Assault With a New Microsoft Breach (Forbes Alert)

Microsoft: malicious cyber group Nobelium tried to attack entities in 36 countries (Israel Defense)

Retrieved 2021-06-28

Microsoft says new breach was discovered in probe by suspected SolarWinds hackers by Reuters (My Blog)

SolarWinds Hackers Breach Microsoft Customer Support to Target its Customers (The Cyber Security News)

Microsoft support agent and some basic customer details hit by SolarWinds attackers (ZDNet)

Microsoft (NASDAQ:MSFT) customers compromised in a cyberattack

Microsoft says new breach discovered in probe of suspected SolarWinds hackers (Regina Leader Post)

Microsoft says new breach discovered in probe of suspected SolarWinds hackers (The Star Phoenix)

SolarWinds hackers attack Microsoft, shocking security analysts (Techzine Europe)

Microsoft says hackers who compromised SolarWinds breached three new victims

Microsoft Discovers New Attacks by SolarWinds Group, Including One Against Its Own Agent - by Cynthia Brumfield (Metacurity)

Microsoft’s customer support targeted by SolarWinds hackers

Russian hackers breached Microsoft customer support to try phishing targets in 36 countries

Microsoft support agent and some basic customer details hit by SolarWinds attackers (ZDNet)

Microsoft Tracks Attack Campaign Against Customer ...

Microsoft customer support hacked in new campaign by APT29

The SolarWinds hackers are attacking again. (Aluria Tech)

Microsoft uncovers new breach while investigating SolarWinds hackers, Digital News (AsiaOne)

Microsoft Signed Malware That Spreads Through Gaming (tpost)

SolarWinds hack: Microsoft says new breach discovered during SolarWinds hack probe (The Economic Times)

Details of basic customers attacked by Microsoft support agents and SolarWinds attackers (Fuentitech)

Nobelium, After SolarWinds, Has Now Hit Microsoft (Cyberintel Magazine)

BreachExchange: SolarWinds hackers breach Microsoft support agent to target customers

Retrieved 2021-06-27

SolarWinds Hackers Accessed Microsoft Customer Service Tools (Teller Report)

SolarWinds hackers break into new victims, including Microsoft support agents (Fuentitech)

Microsoft Says SolarWinds Hackers Attacked Three in New Breach (usnewsmail)

SolarWinds hackers breach new victims, including a Microsoft support agent (HITBSecNews)

Microsoft says its own customer support tools were compromised by SolarWinds hackers (TechNewsBoy.com)

Retrieved 2021-06-26

SolarWinds backdoor gang pwns Microsoft support agent to turn sights on customers (Register)

Microsoft says its own customer support tools were compromised by SolarWinds hackers (Sports Grind Entertainment)

Microsoft reports previously undetected security breach while investigating SolarWinds hack — RT USA News

Microsoft: Russia (linked SolarWinds hackers breached three new entitiesSecurity Affairs)

SolarWinds hackers breach new victims, including a Microsoft support agent (ars)

Microsoft Discloses New Customer Hack Linked to SolarWinds Cyberattackers (WSJ)

Microsoft says new breach discovered in probe of suspected SolarWinds hackers (Netscape Money & Business)

Microsoft claims its own customer support tools have been compromised by SolarWinds hackers – . (FR24 News English)

SolarWinds hackers breach new victims, together with a Microsoft help agent (EAUC News)

SolarWinds Hackers Breach New Victims, Including Microsoft Support Agent (Salesground)

SolarWinds hackers breach new victims, including a Microsoft support agent – Ars Technica (Million Dollar Business Blog)

SolarWinds hackers attack new victims, including Microsoft support agent – . (FR24 News English)

Microsoft says a new breach was discovered in a suspected investigation into SolarWinds hackers (India News Republic)

Microsoft Corporation (NASDAQ:MSFT) - Microsoft Says Its Customer Support Tools, Users' Information Were Exploited By The Hackers Behind SolarWinds (Benzinga)

Retrieved 2021-06-25

Microsoft says new breach discovered in probe of suspected SolarWinds hackers (Reuters)

Microsoft says SolarWinds hacking group has breached three new victims (The Record by Recorded Future)

Microsoft says its own customer support tools were compromised by SolarWinds hackers (Verge)

Retrieved 2021-06-15

How FireEye attributed the SolarWinds hacking campaign to Russian spies (CyberScoop)

Retrieved 2021-06-03

Russian SolarWinds hackers have launched a new campaign using their USAID email address, Microsoft said. (Illinois News Today)

Retrieved 2021-06-02

Meatpacking giant JBS believes Russia behind hack that hit plants - Raw Story (Celebrating 17 Years of Independent Journalism)

Retrieved 2021-06-01

How SolarWinds Hackers ‘Nobelium’ Used Constant Contact in Mass Phishing Campaign

Russian SolarWinds Hacker Launches New Phishing Campaign-Security (Illinois News Today)

New breach by hackers behind SolarWinds 'mostly unsuccessful', says Microsoft (Secure books)

Cyberattacks on Companies' IP Threaten the Global Order (Barron's)

SolarWinds hackers launch phishing attack - (GCN)

U.S. seizes two domains used in cyberattacks that mimicked USAID communications (Nasdaq)

SolarWinds Threat Actors Behind New Email Attack Campaign

NobleBaron (New Poisoned Installers Could Be Used In Supply Chain Attacks - SentinelLabs)

Justice Department seizes domains used in Nobelium-USAID phishing campaign (ZDNet)

US seizes 2 domain names used in cyberespionage campaign (The Seattle Times)

Feds seize two domains used by SolarWinds intruders for malware spear (phishing op • The Register)

SolarWind Attackers Launch New Wave Of Phishing Attacks

US SolarWinds hackers seize domains used in cyber espionage attacks (Jioforme)

U.S. seizes domains used in USAID hack (UPI)

will over solarwinds latest massive phishing

Biden weighs direct action against Russian targets following cyberattacks (WHAM)

Russia's Nobelium uses USAID's email system for hacking, according to Microsoft (Illinois News Today)

What Microsoft officials know about Russian phishing hacks aimed at USAID (Illinois News Today)

Retrieved 2021-05-31

Security Council Reveals Russia behind SolarWinds hack not China (WaZoBia9ja)

SolarWinds Hackers Return, Launch Phishing Campaign Using Compromised Account of US Foreign Aid Agency (CPO Magazine)

Another Nobelium Cyberattack (Microsoft On the Issues)

Solarwinds: 150 companies massively targeted by APT29

Nobelium: The SolarWinds Hackers is Back With Another Cyber Attack (secblvd)

Russian hackers of SolarWinds back on the attack

New Wave of Phishing Attacks: SolarWinds Hackers Target Government and NGOs

SolarWinds Attackers Launch New Wave Of Nobelium Attacks - Malware News (Malware Analysis, News and Indicators)

Retrieved 2021-05-30

Keith Alexander Warns About Cyberattacks Linked to Russia

Retrieved 2021-05-28

SolarWinds attacker Nobelium targets almost 3,000 emails (ARN)

Microsoft Catches NOBELIUM's Email Malware Plans, Also Known for its Part in SolarWinds' Attack (Tech Times)

Microsoft: SolarWinds hackers target 150 orgs with phishing

SolarWinds hack: Microsoft says SolarWinds hackers now targeting US agencies, NGOs (The Economic Times)

Microsoft says group behind SolarWinds hack now targeting government agencies, NGOs (Reuters)

Microsoft: SolarWinds hackers target 150 orgs with phishing | Govt. & Politics (yorknewstimes.com)

Russian gang behind SolarWinds hack returns with phishing attack disguised as mail from US aid agency (Register)

SolarWinds hackers are at it again, targeting 150 organizations, Microsoft warns

Microsoft says group behind SolarWinds hack now targetting government agencies, NGOs (Regina Leader Post)

Microsoft says SolarWinds hackers have struck again at the US and other countries (CNN)

MSFT warns group behind SolarWinds cyberattack's returned to target over 150 organizations

Russian Hackers Of SolarWinds Back On The Attack

SolarWinds hackers using NativeZone backdoor against 24 countries

Kremlin says has no information on U.S. cyber attack, directs questions to Microsoft (The Star Phoenix)

SolarWinds attacker Nobelium targets over 150 companies in new mass email campaign (CSO Online)

Hackers are using Trump’s election fraud conspiracy to break into U.S. government agencies

Microsoft warns that Russian hackers used US agency to mount huge cyberattack (CNET)

Retrieved 2021-05-27

New sophisticated email-based attack from NOBELIUM (MS Security)

Retrieved 2021-05-26

Microsoft unleashes ‘Death Star’ on SolarWinds hackers in extraordinary response to breach | #microsoft | #hacking (#cybersecurity - National Cyber Security News Today)

Retrieved 2021-05-14

UK and US confirm Russian responsibility for SolarWinds attack - Industry (update.com)

Retrieved 2021-05-13

Biden says Colonial Pipeline hackers based in Russia, but not government-backed (hill)

Retrieved 2021-05-12

Russia must do more to tackle cyber criminals operating from within its borders, says UK (ZDNet)

Retrieved 2021-05-07

SolarWinds Believes Russian Group Took Data During Cyber-Attack (Bloomberg)

Retrieved 2021-05-06

US spy agencies review software suppliers' ties to Russia following SolarWinds hack (CyberScoop)

Fact Sheet: Russian SVR Activities Related to SolarWinds Compromise

US spy agencies review software suppliers' ties to Russia following SolarWinds hack

Retrieved 2021-04-27

Cybersecurity roundup: U.S. agencies warn of Russian hacks, Australian hospitals struggle to get back online (Healthcare IT News)

Retrieved 2021-04-25

Report: Russia 'likely' kept access to US networks after SolarWinds hack

Report: Russia 'likely' kept access to US networks after SolarWinds hack (Engadget)

Retrieved 2021-04-23

When a Ripple Becomes a Wave: Cyberattack Fallout (secblvd)

Retrieved 2021-04-22

SolarWinds: Advancing the Story (RiskIQ Community Edition)

Russian Cyber Threat Defense – Now and Looking Forward (secblvd)

HAFNIUM Exploits Live On (secblvd)

Supernova Malware Actors Masqueraded as Remote ...

Retrieved 2021-04-21

Russia Sanctioned For Role In SolarWinds Supply Chain Attack (Alston & Bird Privacy, Cyber & Data Strategy Blog)

Retrieved 2021-04-20

UK and US call out Russia for SolarWinds compromise

Russia’s Positive Technologies responds to US Treasury sanctions. US Government stands down its SolarWinds and Microsoft Exchange task forces. FCC security priorities charted.

Retrieved 2021-04-19

Positive Technologies denies involvement in SolarWinds attack (TechRadar)

Retrieved 2021-04-17

In Punishing Russia for SolarWinds, Biden Upends U.S. Convention on Cyber Espionage (ADVFN)

US Institutes Sanctions Against Russia Over SolarWinds Hack

In Punishing Russia for SolarWinds, Biden Upends U.S. Convention on Cyber Espionage (WSJ)

SolarWinds : Russia Russia Russia! The Biden Administration Imposes Tough Sanctions On Russia (MarketScreener)

Russia announces expulsion of 10 U.S. diplomats and ban some U.S. officials (Sandhills Express)

Retrieved 2021-04-16

SolarWinds compromise attributed to Russian state actor (Mirage News)

Russian Foreign Intelligence Service Exploiting Five Publicly Known Vulnerabilities to Compromise U.S. and Allied Networks (Homeland Security Today)

Russian SVR Targets U.S. and Allied Networks

US names 6 Russian tech firms aiding govt hackers - Security (CRN Australia)

White House: Russians Behind SolarWinds and 5 More Technology Attacks

SolarWinds cyber strike: Russia did it, say US and UK

SolarWinds: Accountability, Attribution, and Advancing the Ball

Experts On Russia Being Held Accountable For SolarWinds (Information Security Buzz)

U.S. Fingers Putin’s Cozy Bear for SolarWinds Attacks (secblvd)

SolarWinds cyber strike: Russia did it, say US and UK (Attivo Networks)

Sanctioned Russian IT firm was partner with Microsoft, IBM

Russia blocks key Biden Cabinet officials from entering in retaliation for sanctions (hill)

Holding Russia To Account (U.S. Embassy in Georgia)

Australian Government Blames Russia For SolarWinds Cyber Attack

US Pulls Back Curtain on Russian Cyber Operations

Russia objects to US sanctions; US gets UK, EU support. Vaccine cold chain remains a target. Iran says Natanz back in business.

Russia sanctions eight US officials and expels diplomats in reta - Erie News Now (WICU and WSEE in Erie, PA)

Russian SVR Behind the SolarWinds Hack, According to U.S. Government

Russia to expel 10 US diplomats in 'tit-for-tat response' to Biden sanctions | National (pdclarion.com)

Russia: UK exposes Russian involvement in SolarWinds cyber compromise (UK Government) (CompanyNewsHQ)

US attributes SolarWinds campaign to Russia's SVR and calls out Russian disinformation shops. New APT34 activity.

It was Russia wot did it: SolarWinds hack was done by Kremlin’s APT29 crew, say UK and US (Cyber Security Review)

Russia Retaliates Against Biden's New Sanctions, Expelling 10 U.S. Diplomats (KENW)

Russian SVR blamed for SolarWinds supply chain compromise, cyber espionage action (Industrial Cyber)

Biden Administration Issues Russian Sanctions in Response to SolarWinds

Solarwinds, Inc. (NYSE:SWI) - White House Holds Russia's SVR Responsible For SolarWinds Cyber Hack: Reuters (Benzinga)

Swinburne University confirms over 5,000 individuals affected in data breach (Bestgamingpro)

Sanctioned Firm Accused of Helping Russian Intelligence Was Part of Microsoft’s Early Vuln Access Program — MAPP (Zero Day)

Retrieved 2021-04-15

Russian Foreign Intelligence Service Exploiting Five Publicly Known Vulnerabilities to Compromise U.S. and Allied Networks > National Security Agency Central Security Service > Article View

Australia blames Russia for SolarWinds attack (InnovationAus)

FACT SHEET: Imposing Costs for Harmful Foreign Activities by the Russian Government (The White House)

US Gov sanctions Russia and expels 10 diplomats over SolarWinds hackSecurity Affairs

White House blames Russia's SVR agency for SolarWinds breachl (Seeking Alpha)

US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack

Statement on Solar Winds Orion cyberattacks - Ministry of Foreign Affairs Republic of Poland (Gov.pl website)

US government strikes back at Kremlin for SolarWinds hack campaign (ars)

Attribution of cyber incident to Russia (Australian Minister for Foreign Affairs, Minister for Women)

White House blames Russian spy agency SVR for SolarWinds hack: statement (95 KQDS)

It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US (Register)

Britain blames Putin's spies for massive SolarWinds cyber attack (Daily Mail Online)

Retrieved 2021-04-14

Protecting The Integrity Of The Software Factory

US spy chiefs to warn of threats from SolarWinds to North Korea (Maju Saham)

US expels Russian diplomats, imposes sanctions for hacking

Retrieved 2021-04-13

What You Need to Know about the Cyber (Espionage Attack Linked to Russia)

U.S. intelligence community details destructive cyber capabilities, growing influence threats

Retrieved 2021-04-12

SolarWinds and Microsoft Exchange: Hacks Wrapped in a Cybersecurity Dilemma Inside a Cyberspace Crisis (Georgetown Journal of International Affairs)

Retrieved 2021-04-10

SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers (The Cyber Post)

Retrieved 2021-04-05

Examining the SolarWinds/Holiday Bear Hack (Columbia SIPA)

Retrieved 2021-04-01

CISA Orders More Microsoft Exchange Checks in Hunt for Undetected Compromises (MeriTalk)

Retrieved 2021-03-31

What We Know (and Don't Know) So Far About the ...

Punitive Response to SolarWinds Would Be Misplaced, But Cyber Deterrence Still Matters (Russia Matters)

US to publish details on suspected Russian hacking tools used in SolarWinds espionage

Russian hackers have once again been accused of carrying out cyber (attacks on the United States)

Retrieved 2021-03-30

SolarWinds Breach Exposed 'Climate Change' Level of Threat to U.S. Cybersecurity: Experts (The Crime Report)

Retrieved 2021-03-29

White House Weighs ‘Seen and Unseen’ Responses to Major Hack (Bloomberg)

SolarWinds hack: US weighs ‘seen and unseen’ responses to major cyber attack (Hindustan Times)

Retrieved 2021-03-26

SolarWinds, cyberattacks (Homeland Security Newswire)

New, critical vulnerability discovered that could let attackers gain entry to SolarWinds systems (The Cyber Security News)

Retrieved 2021-03-25

What Lessons Should We Learn From The Suspected Russian Hack Of SolarWinds And Other U.S. Agencies And Companies?

Retrieved 2021-03-23

SolarWinds Attackers Manipulated OAuth App Certificates

Retrieved 2021-03-20

Swiss Firm Says It Has Accessed Servers of a SolarWinds Hacker

Retrieved 2021-03-19

Swiss Firm Says It Has Accessed Servers of a SolarWinds Hacker (Bloomberg)

SolarWinds-Linked Attackers Target Microsoft 365 ... (PG-Intel)

Retrieved 2021-03-18

SolarWinds-linked hacking group SilverFish abuses enterprise victims for sandbox tests (ZDNet)

Retrieved 2021-03-17

Russia's Efforts At Information Warfare Against The West Continue : NPR

Suspected Chinese hackers used SolarWinds bug to spy on US payroll agency (sources)

Mimecast Finds SolarWinds Hackers Stole Some of Its Source Code

Mimecast confirms hackers behind SolarWinds supply chain attack accessed limited amount of customer information (The Daily Swig)

iTWire (Ohio senator lashes govt over accountability for SolarWinds attack)

SilverFish Group Threat Actor Report

SolarWinds (Linked Attackers Target Microsoft 365 ...)

Retrieved 2021-03-12

There’s a vexing mystery surrounding the 0-day attacks on Exchange servers (ars)

Retrieved 2021-03-11

There is Still More to SolarWinds Attack (Cyware Alerts - Hacker News)

Microsoft Probing Whether Leak Played Role in Suspected Chinese Hack (WSJ)

Retrieved 2021-03-10

Chinese suspected of two attacks on internet (facing SolarWinds server)

DHS CISA Shares Remediation, Risk Guidance for SolarWinds Compromise

Chinese threat actor exploited SolarWinds vulnerability. Second (stage backdoor possibly linked to SolarWinds compromise. Dependency confusion updates.)

Security researchers discover Supernova web shell activity linked to Chinese hackers | 2021-03-10 (Security Magazine)

Chinese hackers presumably behind SolarWinds hack new evidence revealed (Secure Blink)

FireEye CEO: Reckless Microsoft hack odd for China

FireEye CEO: Reckless Microsoft hack unusual for China | (leadertelegram.com)

Retrieved 2021-03-09

More clues appear to link Supernova web shell activity to Chinese hackers (TechRadar)

Researchers Describe a Second, Separate SolarWinds Attack

Retrieved 2021-03-08

Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks (ZDNet)

US plans 'a mix of actions' against Russia over SolarWinds cyberattack (Engadget - News WWC)

Biden Plans Cyber Attacks Against Russia For SolarWinds Hack, Ignores Chinese Involvement (National File)

China (linked hackers exploited SolarWinds software in 2020 breach, researchers say)

Chinese hackers targeted SolarWinds customers in parallel with Russian op (ars)

More clues appear to link Supernova web shell activity to Chinese hackers (TechRadar)

[Update] SolarWinds Hack Finds Possible Link to China, Say Researchers-- Supernova Malware Detected (Tech Times)

Retrieved 2021-03-06

Casting a wide intrusion net: Dozens burned with single hack

Retrieved 2021-03-04

Microsoft: We've found three more pieces of malware used by the SolarWinds attackers (ZDNet)

New SUNSHUTTLE Second-Stage Backdoor Uncovered Targeting U.S.-Based Entity; Possible Connection to UNC2452 (Mandiant)

FireEye finds new malware likely linked to SolarWinds hackers - AlienVault (Open Threat Exchange)

Retrieved 2021-03-03

Microsoft: SolarWinds Attack Highlights Growing Sophistication of Nation-State Actors (Infosecurity Magazine)

Retrieved 2021-02-26

Former SolarWinds CEO blames the intern for the “solarwinds123” password leak (Security – 6Park News En)

Retrieved 2021-02-25

SolarWinds Hackers Targeted Cloud Services as a Key Objective  (AI Trends)

Hillicon Valley: Biden signs order on chips | Hearing on media misinformation | Facebook's deal with Australia | CIA nominee on SolarWinds (hill)

The massive Solarwinds attack is still shrouded in mystery

CIA nominee: Cyber threats are 'ever greater risk' for U.S. society - (FCW)

Microsoft Releases Free Tool for Hunting SolarWinds ...

Microsoft failed to shore up defenses that could have limited SolarWinds hack: U.S. senator | Y100 WNCY | Your Home For Country & Fun (Green Bay, WI)

SolarWinds Update: Russian Threat-Actor Re (Used Components from Other)

Retrieved 2021-02-24

Tech firms say there's little doubt Russia behind major hack

SolarWinds cybersecurity breach: How it happened and Biden’s response (The Anchor)

SolarWinds & Solorigate: What Happened, Why it Matters & What Happens Next (The Devolutions Blog)

Senate grills tech executives on SolarWinds hack (One America News Network)

Early Edition: February 24, 2021 (Just Security)

At least 1,000 engineers worked on supply chain hack, tech exec says - (GCN)

Retrieved 2021-02-23

Opinion (Why Was SolarWinds So Vulnerable to a Hack? - The New York Times)

Executives testify SolarWinds hack was of unprecedented scale, scope (UPI)

SolarWinds Hack Bigger, More Dangerous than Previously Thought, Tech Execs Warn (VOA)

Retrieved 2021-02-22

Chinese Hackers Hijacked NSA-Linked Hacking Tool: Report (tpost)

Anatomy of the SolarWinds Attack: Five Types of Malware (Blumira)

US House Committees to Hold Hearing on SolarWinds Hack on 26 February (Sputnik)

Retrieved 2021-02-21

White House says it will hold those responsible for SolarWinds hack accountable within weeks (CNNPolitics)

Retrieved 2021-02-19

Massive breach fuels calls for US action on cybersecurity - U.S. (Stripes)

Retrieved 2021-02-18

What financial services should learn from the SolarWinds cyber attack

Retrieved 2021-02-17

Biden to take 'executive action' to address SolarWinds breach (hill)

Thread by @NatashaBertrand on Thread Reader App (Thread Reader App)

Retrieved 2021-02-15

SolarWinds Hack Was 'Largest and Most Sophisticated Attack' Ever, Microsoft President Brad Smith Says (Technology News)

Cybersecurity experts say U.S. needs to strike back after SolarWinds hack

Microsoft says it found 1,000 (plus developers' fingerprints on the SolarWinds attack • The Register)

Retrieved 2021-02-14

SolarWinds hack was 'largest and most sophisticated attack' ever: Microsoft president (Reuters)

SolarWinds hack was 'largest and most sophisticated attack' ever (Microsoft president)

Retrieved 2021-02-11

White House Names SolarWinds Response Leader Amid Criticism (SecurityWeek.Com)

7 Things We Know So Far About the SolarWinds Attacks

The Hack Roundup: White House Says Neuberger Leading Federal Response (Nextgov)

Retrieved 2021-02-09

SolarWinds security to-do list post hack (Utility Dive)

Retrieved 2021-02-08

The Right Response to SolarWinds (CoFR)

VirusTotal

Retrieved 2021-02-05

Multiple new flaws uncovered in SolarWinds software just weeks after high-profile supply chain attack (The Daily Swig)

Retrieved 2021-02-04

Another SolarWinds Orion Hack (Schneier)

SolarWinds CEO Confirms Office 365 Email ‘Compromise’ Played Role In Broad (Based Attack)

Alex Stamos Attributes SolarWinds Hack To Russian Intel Service

SolarWinds chases multiple leads in breach investigation

Retrieved 2021-02-03

More exploitable flaws found in SolarWinds software, says cybersecurity firm

Second SolarWinds Attack Group Breaks into USDA Payroll — Report (tpost)

Chinese threat actor may have exploited SolarWinds. New SolarWinds vulnerabilities reported. Spyware in South Sudan. BEC gift card scams rise.

SolarWinds patches three newly discovered software vulnerabilities (ZDNet)

Retrieved 2021-02-02

Hackers Lurked in SolarWinds Email System for at Least 9 Months, CEO Says (WSJ)

US payroll agency targeted by Chinese hackers: report (hill)

Exclusive: Suspected Chinese hackers used SolarWinds bug to spy on U.S. payroll agency – sources (Reuters)

Retrieved 2021-01-26

Mimecast Breach Linked To SolarWinds Hack, Allowed Cloud Services Access

Retrieved 2021-01-25

White House Removes Spokeswoman at Agency Responding to SolarWinds Hack (WSJ)

Retrieved 2021-01-22

President Biden Orders SolarWinds Intelligence Assessment

Retrieved 2021-01-21

Takeaways for Microsoft cloud customers and partners after the SolarWinds breach (MSCloudNews)

Retrieved 2021-01-19

Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (fireeye)

Retrieved 2021-01-15

Sunburst Malware Information (FireEye)

IOTW: As The SolarWinds Hack Investigation Continues, New Insights Reveal A New Suspect (Cyber Security Hub)

Retrieved 2021-01-14

Cybersecurity firm identifies third SolarWinds hack malware strain (FoxBiz)

FireEye not ready to ascribe SolarWinds hack to Russia - (FCW)

The Devil’s in the Details: SUNBURST Attribution

Kaspersky experts connect SolarWinds attack with Kazuar backdoor

Retrieved 2021-01-13

Sunspot malware scoured servers for SolarWinds builds to trojanize them

Hackers hijacked email security firm Mimecast to spy on customers (VentureBeat)

Retrieved 2021-01-12

SolarWinds Says It Has Found Source of Massive Cyberattack (TheStreet)

The Hack Roundup: SolarWinds Shares Details on How Attackers Inserted Backdoor (Nextgov)

Third malware strain discovered in SolarWinds supply chain attack (ZDNet)

Kaspersky Lab autopsies evidence on SolarWinds hack (Register)

Retrieved 2021-01-11

Sunburst backdoor – code overlaps with Kazuar (Securelist)

SolarWinds hackers linked to known Russian spying tools, investigators say (Reuters)

Exclusive: FBI probes Russian-linked postcard sent to FireEye CEO after cybersecurity firm uncovered hack - sources (Reuters)

SolarWinds hackers linked to known Russian spying tools, investigators say (Reuters)

Researchers Find Links Between Sunburst and Russian Kazuar Malware

SolarWinds Hack Potentially Linked to Turla APT (tpost)

Retrieved 2021-01-08

CISA: SolarWinds hackers also used password guessing to breach targets (ZDNet)

Retrieved 2021-01-07

Implications of Russian Hacking of SolarWinds

NSA Warns That Russian Hackers Are Targeting Virtual Workspaces (Nextgov)

FireEye's Mandia: 'Severity (Zero Alert' Led to ...)

Retrieved 2021-01-06

Justice Department also hit by Russian hackers (wapo)

FBI probe of major hack includes project-management software from JetBrains: sources (Reuters)

DOJ says it was hit by SolarWinds hackers - (FCW)

Retrieved 2021-01-05

SolarWinds hack continues to spread: What you need to know (CNET)

The Cyberlaw Podcast: The Grim Lessons of the SolarWinds Breach (Lawfare)

Reshaping Cyberspace: Beyond the Emerging Online Mercenaries and the Aftermath of SolarWinds

SolarWinds hack officially blamed on Russia: What you need to know (CNET)

Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack (ars)

Hacking ‘Likely’ Came From Russia, US Says (nyt)

Opinion: The SolarWinds hack is stunning. Here's what should be done (CNN)

Feds: SolarWinds Breach Is Likely Russian Intel Gathering Effort

Retrieved 2021-01-03

The threats arising from the massive SolarWinds hack (CBS News)

SolarWinds hack may be bigger than previously believed (SiliconANGLE)

How to Get Rich Sabotaging Nuclear Weapons Facilities (BIG by Matt Stoller)

Retrieved 2021-01-02

As Understanding of Russian Hacking Grows, So Does Alarm (nyt)

How Russia’s ‘Info Warrior’ Hackers Let Kremlin Play Geopolitics on the Cheap (WSJ)

Retrieved 2020-12-31

The SolarWinds Hack Doesn’t Demand a Violent Response (Defense One)

Retrieved 2020-12-29

National cyber director role in the spotlight after SolarWinds hack

Retrieved 2020-12-24

Suspected Russian hackers used Microsoft vendors to breach customers (Reuters)

SolarWinds Hack Infected Critical Infrastructure

Here's a simple explanation of the SolarWinds hack (BI)

Hack of Federal Agencies Shows Cyber Dangers to Supply Chains (WSJ)

Suspected Russian hackers used Microsoft vendors to breach customers (Reuters)

Retrieved 2020-12-23

Joe Biden Blames Russia For Huge SolarWinds Hack (HuffPost)

The Facts and Mysteries About Russia’s Hack of the U.S.

Q:CYBER spots lateral movement as used in the SolarWinds (Sunburst) calamity | State (insidenova.com)

Retrieved 2020-12-22

The SolarWinds Compromise and the Strategic Challenge of the Information and Communications Technology Supply Chain (CoFR)

A Second Hacker Group May Have Also Breached SolarWinds, Microsoft Says

Retrieved 2020-12-21

Microsoft identifies second hacking group affecting SolarWinds software

Trump's reluctance to name Russia in SolarWinds hack will hamper recovery (Axios)

SolarWinds Hack Hit Office Home to Top Treasury Department Officials (WSJ)

Retrieved 2020-12-19

Second hacking team was targeting SolarWinds at time of big breach (Reuters)

Second hacking team was targeting SolarWinds at time of big breach (Reuters)

US cyber-attack: Russia 'clearly' behind SolarWinds operation, says Pompeo (BBC News)

Pompeo Blames Russia for Hack as Trump Casts Doubt on Widespread Conclusion (WSJ)

Trump Contradicts Pompeo Over Russia’s Role in Hack (nyt)

Pompeo Says Russia 'Pretty Clearly' Behind SolarWinds Cyberattack. : NPR

Retrieved 2020-12-18

Microsoft president calls SolarWinds hack an “act of recklessness” (ars)

DOE confirms its systems were compromised by SolarWinds hack (Utility Dive)

SolarWinds Scandal Calls Attention to Supply Chain Security

Bill That Trump Is Vowing to Veto Strengthens Hacking Defenses, Lawmakers Say (nyt)

Retrieved 2020-12-17

The SolarWinds Orion SUNBURST supply-chain Attack (TRUESEC Blog)

DebUNCing Attribution: How Mandiant Tracks Uncategorized Threat Actors (fireeye)

More Hacking Attacks Found, Officials Warn of Risk to U.S. Government (nyt)

Cyber attack may be ‘worst in the history of America’ (LV Jrnl)

Feds: SolarWinds Attack ‘Poses a Grave Risk’ To Government, Business

Retrieved 2020-12-16

U.S. Agencies Exposed in Attack by Suspected Russian Hackers (Bloomberg)

Federal Agencies, Think Tank Targeted in Russian Hacking Spree

Massive hack of US government launches search for answers as Russia named top suspect

Retrieved 2020-12-15

Was my workplace hit by SolarWinds hack? FAQ answers. (trib)

What We Know (And Don’t) About The SolarWinds Orion Hack So Far

Suspected Russia SolarWinds Hack Exposed After FireEye Cybersecurity Firm Found 'Backdoor'

The U.S. government spent billions on a system for detecting hacks. The Russians outsmarted it. (wapo)

Russian hack into Treasury, Commerce, DHS raises federal alarms (Axios)

Retrieved 2020-12-14

Russian hacker group 'Cozy Bear' behind Treasury and Commerce breaches (wapo)

Dark Halo Leverages SolarWinds Compromise to Breach Organizations (Volexity)

Russian hackers hit US government using widespread supply chain attack (ars)

SolarWinds Breach: An RSAC Interview with Dmitri Alperovitch About Who, How and Why (RSA)

Scope of Russian Hacking Becomes Clear: Multiple U.S. Agencies Were Hit (nyt)

US govt, FireEye breached after SolarWinds supply (chain attack)

Retrieved 2020-12-13

Russian Hackers Broke Into Federal Agencies, U.S. Officials Suspect (nyt)

Suspected Russian hackers spied on U.S. Treasury emails - sources (Reuters)

Embassy of Russia in the USA / Посольство России в США - Posts (Facebook)

Suspected Russian hackers spied on U.S. Treasury emails - sources (Reuters)

US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor

Cyberattack on U.S. Treasury by foreign government

Russian government (backed hackers breached the U.S. Treasury)

Treasury, Commerce, Others Hacked by Russian Government Spies, Report (Rolling Stone)

U.S. Agencies Hacked in Foreign Cyber Espionage Campaign Linked to Russia (WSJ)

Retrieved 2020-12-08

FireEye reveals that it was hacked by a nation state APT group

U.S. Cyber Firm FireEye Says It Was Breached by Nation-State Hackers (WSJ)

Retrieved 2020-07-24

Who is behind APT29? What we know about this nation-state cybercrime group (The Daily Swig)

Retrieved 2020-02-02

Chinese Hackers Exploit SolarWinds To Steal Federal Payroll Info: Report