Microsoft identifies more than 40 organizations targeted in massive cyber breach
Microsoft has identified more than 40 of its customers around the world that had problematic versions of a third-party IT management program installed and that were specifically targeted by the suspected Russian hacking campaign disclosed this week, the company said in a blog post Thursday.
The tech company said that 80% of those victims are in the US while the rest are in seven other countries: Canada, Mexico, Belgium, Spain, the United Kingdom, Israel and the United Arab Emirates.
"It's a certainty that the number and location of victims will keep growing," said Microsoft President Brad Smith, who added that the company has worked to notify the affected organizations.
Microsoft's analysis represents the clearest and most specific assessment yet of the scope of the damage caused by the hacking campaign, which was secretly conducted through a third-party software program sold by SolarWinds, an IT management firm.
The software that the suspected Russian malware was delivered with, SolarWinds Orion, has as many as 18,000 global customers, including government agencies, private companies and other organizations. Microsoft said Thursday that the attack "reached many major national capitals outside Russia."
"The attack unfortunately represents a broad and successful espionage-based assault on both the confidential information of the U.S. Government and the tech tools used by firms to protect them," Smith wrote. "The attack is ongoing and is being actively investigated and addressed by cybersecurity teams in the public and private sectors, including Microsoft."
Microsoft has been working as an investigative partner to cybersecurity firm FireEye, which is also a victim and issued the first warning about the supply chain attack.
Previously, FireEye also identified victims across several sectors and countries, including government, consulting, technology, telecom and extractive entities in North America, Europe, Asia and the Middle East.
Earlier Thursday, Reuters reported that Microsoft had been compromised as well. Microsoft said it has "isolated and removed" a vulnerability in its systems tied to third-party software that had facilitated a suspected Russian hacking campaign.
Updates to the software sold by SolarWinds were used as a carrier for malicious code that US officials believe may be linked to Russia. That software was found in Microsoft's network, the company said in a statement Thursday evening.
The statement marks Microsoft's first public acknowledgment that in addition to investigating the malware, it was also a victim of it.
"Like other SolarWinds customers, we have been actively looking for indicators of this actor and can confirm that we detected malicious Solar Winds binaries in our environment, which we isolated and removed," the statement said.
Microsoft has not found evidence that an actual data breach occurred or that the attackers exploited their access, the company added. The company pushed back on a Reuters report that suggested Microsoft's products had been used to compromise other victims.
"Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others," Microsoft said.
President Trump reportedly wants to create a third party once he leaves office.
A surge in secret software used to spy on staff working from home during the pandemic has led to calls for new laws to be brought in against unscrupulous bosses.
"I believe this genocide is ongoing, and that we are witnessing the systematic attempt to destroy Uighurs by the Chinese party-state,"...
Two of the 12 were removed from duty for making "inappropriate comments or texts," said National Guard Commander General Daniel Hokanson.
Donald Trump, who has not appeared in public for a week, broke days of silence with a videoed farewell address which the White...
A heartbroken boyfriend has paid tribute to a ‘selfless’ teenage mum who died after giving birth at home following an ‘unknown pregnancy’.
Joe Biden "has spoken of the need for a path to citizenship for the individuals who have been in this country for many years,...
A married teacher claims she could not have had sex with a pupil as she is too short for the position in question.
The losses marked the first time the company has found itself in the red in the two decades since it was publicly listed.
The army is being drafted in to help hospitals in Shropshire facing staff shortages due to a rise in Covid-19 sickness levels.
University heads in meeting on campus governance and security issues say they will discipline any student who violates school regulations.
Some residents say they have been taking extra precautions all along given what they see as the inherent risks of living in crowded Yau Tsim Mong district.
Wharf (Holdings) and CK Asset are lining up to release their new developments on The Peak and in the Mid-Levels soon, betting on...
Dozens of accounts involved in laundering scheme to clean money that had been swindled online. Officers from Tuen Mun district...
Thousands living in Sham Shui Po may be required to undergo mandatory testing after health officials announced that a similar mandatory...
Hong Kong’s health chief has announced that the 15 Lunar New Year fairs in the city will resume flower selling, with the number of stalls halved.
The seasonally adjusted unemployment rate increased from 6.3 percent in September - November 2020 to 6.6 percent in October - December...
Around 30 percent of those hospitalized with the coronavirus in England were readmitted for treatment within five months of their...
New statistics show that an estimated 5.4 million people in England had coronavirus antibodies in December, and the rate of infection...
The UK’s Northern Ireland Secretary Brandon Lewis has warned the public that the national lockdown may last a further six to eight...
The publication of a letter from the Duchess of Sussex to her father was a "triple-barrelled invasion" of her privacy, the High Court has been told.
The UK and US have failed to do a much hoped for "mini-deal" over trade in the last days of the Trump administration.
Theresa May has accused her successor Boris Johnson of "abandoning" the UK's moral leadership on the world stage.
The BVI government is calling for a proper and honest procedure of the Commission of Inquiry announced by the former and controversial...