SolarWinds hack was the work of thousands, says Microsoft

Security experts say cyberattack on SolarWinds was clearly well coordinated

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

TheSolarWindshack that affected hundreds of public and private networks across the globe may have been the work of thousands of cyberattackers.

Microsoftpresident Brad Smith told US news program60 Minutesthat an internal analysis of the attack found that “certainly more than 1,000” software engineers had been involved.

It remains unclear who these threat actors are or who coordinated their efforts, but most experts believe the SolarWinds attack was sponsored by the Russian state. Smith added his backing to this claim by highlighting that the Russian Government previously employed a mass supply chain disruption tactic in Ukraine.

In the same 60 Minutes segment, it was also revealed exactly how FireEye discovered the SolarWinds hack. Company CEO Kevin Mandia said that a security employee noticed that an individual had two phones registered under their name. Further investigation revealed that the second device was not legitimate. It was also disclosed that 4,032lines of codewere involved in the attack.

More to come?

It seems likely that further information will continue to gradually come to light regarding the SolarWinds attack, which Smith called “the largest and most sophisticated attack the world has ever seen.” Technology vendors, includingMalwarebytes,Microsoft, and FireEye, have all been affected, as have several US Government agencies.

Because the SolarWinds hack was able to remain undetected for months, it allowed attackers to infiltrate hundreds of corporate networks. SolarWinds’ compromised Orionsoftwareis believed to have more than 30,000 customers.

Russia’s own National Coordination Center for Computer Incidents has also advised domestic businesses to prepare for retaliatory attacks, particularly against critical services. Despite this, Russia continues to deny any involvement in the SolarWinds attack.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

ViaThe Register

Barclay has been writing about technology for a decade, starting out as a freelancer with ITProPortal covering everything from London’s start-up scene to comparisons of the best cloud storage services.  After that, he spent some time as the managing editor of an online outlet focusing on cloud computing, furthering his interest in virtualization, Big Data, and the Internet of Things.

Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics

This new phishing strategy utilizes GitHub comments to distribute malware

The Galaxy S25 Ultra’s rumored iPhone-beating power could tempt me back to Android