In turn, Microsoft admitted being hacked because of the SolarWinds vulnerability

Last weekend, security experts discovered that a group of Russian hackers have attacked a series of large global agencies and businesses through a vulnerability in SolarWinds' automatic update mechanism.

Taking advantage of a backdoor called Solarigate (ordered by Microsoft) or Sunburst (installed by FireEye), hackers have installed malicious software on the infrastructure of about 18,000 SolarWinds customers. Currently, the organizations hacked include the US Treasury Department, the US Homeland Security, the US Department of Energy and many other large organizations and enterprises.

According to Reuters, Microsoft was also hacked by the hacker group above through the SolarWinds vulnerability. Not only that, but Microsoft's software is also modified to infect customers as well as users.

Microsoft confirmed that they had been hacked but denied that their systems were used to attack other victims. 

"We have found out SolarWinds files that contain malicious code on our system and have isolated and deleted them. We did not find any evidence that hackers have hacked into services. The utility or our customer data. Our investigations found no indication that our systems were being used to attack others, "Microsoft said.

The list of organizations and businesses hacked with SolarWinds vulnerability is growing. SolarWinds has more than 300,000 customers globally, including many large organizations and businesses. Therefore, this incident is assessed as extremely serious. 

Currently, SolarWinds has cooperated with Microsoft, FireEye and many other security and security organizations to try to fix the problem. A patch for the exploited SolarWinds software has also been released.

Microsoft recommends that users do not turn off the Windows Update service. Most likely Microsoft will soon roll out security updates to ensure customers and users are safe.

David Pac

Update 19 December 2020