Security Market Segment LS
  2. Home
  3. Security
  4. Attackers hit US Treasury through Microsoft Office 365; SolarWinds opens door to others
Monday, 14 December 2020 08:03

Attackers hit US Treasury through Microsoft Office 365; SolarWinds opens door to others Featured

By
Attackers hit US Treasury through Microsoft Office 365; SolarWinds opens door to others Image by Gerd Altmann from Pixabay

Microsoft software has once again proved to be the weak link and opened the path for cyber attacks, this time to the US Treasury Department and an entity that deals with Internet and telco policy. The network management software SolarWinds appears to have opened the door for other agencies to be attacked.

Reuters reported that exploiting a vulnerability in Microsoft Office 365 was the route the attackers took to break into the National Telecommunications and Information Administration, a part of the US Commerce Department.

The Washington Post later reported that Russian attackers hit the Treasury and also hit FireEye, with the network management software SolarWinds implicated.

The Post reporter who wrote this story is the same person who started the now-discarded theory that Russia was responsible for email leaks to WikiLeaks during the 2016 presidential election.
The source who fed the information to Reuters, very likely an intelligence agency given that the report was written by Chris Bing, who was responsible for many similar stories at his former billet, CyberScoop, also said the intrusion was considered serious enough to merit a meeting of the US National Security Council on Saturday.

The SolarWinds network management system appears to have been compromised at source, with the company issuing a statement on Sunday saying that updates it released between March and June could have been corrupted.

SolarWinds NMS is used by about 400 of the so-called Fortune 500. Its customers include the top telcos, the US military, the US State Department, the NSA and the Office of the President of the US.

NSC spokesman John Ullyot was quoted as saying: “We are taking all necessary steps to identify and remedy any possible issues related to this situation."

As usual, when such stories are published they invariably claim that the attackers are from a foreign government and "sophisticated". This time, Bing went a step higher and cited his sources as describing the attackers as "highly sophisticated".

Some commenters on Twitter attempted to tie the intrusion to the recent sacking of Christopher Krebs, the head of the Department of Homeland Security's Cyber Security and Infrastructure Security Agency.

Others questioned whether there was any connection between the attack and the theft of attack tools from the US cyber security firm FireEye last week.

A third category was inclined to blame the Trump administration, saying that it was a bid to sanitise material that would be damaging to the outgoing president. 

iTWire has contacted Microsoft for comment.


Subscribe to ITWIRE UPDATE Newsletter here

GRAND OPENING OF THE ITWIRE SHOP

The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.

ENTER THE SHOP NOW!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
Published in Security
Tagged under
Sam Varghese

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Latest from Sam Varghese

Related items

More in this category: « Attivo and Quantea launch 'Joint Cybersecurity Solution' which reduces network breach and data loss risk in the age of IoT and COVID-19 Windows MountLocker ransomware working through affiliates: claim »
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments