In turn, Microsoft admitted being hacked because of the SolarWinds vulnerability
Last weekend, security experts discovered that a group of Russian hackers have attacked a series of large global agencies and businesses through a vulnerability in SolarWinds' automatic update mechanism.
Taking advantage of a backdoor called Solarigate (ordered by Microsoft) or Sunburst (installed by FireEye), hackers have installed malicious software on the infrastructure of about 18,000 SolarWinds customers. Currently, the organizations hacked include the US Treasury Department, the US Homeland Security, the US Department of Energy and many other large organizations and enterprises.
According to Reuters, Microsoft was also hacked by the hacker group above through the SolarWinds vulnerability. Not only that, but Microsoft's software is also modified to infect customers as well as users.
Microsoft confirmed that they had been hacked but denied that their systems were used to attack other victims.
"We have found out SolarWinds files that contain malicious code on our system and have isolated and deleted them. We did not find any evidence that hackers have hacked into services. The utility or our customer data. Our investigations found no indication that our systems were being used to attack others, "Microsoft said.
The list of organizations and businesses hacked with SolarWinds vulnerability is growing. SolarWinds has more than 300,000 customers globally, including many large organizations and businesses. Therefore, this incident is assessed as extremely serious.
Currently, SolarWinds has cooperated with Microsoft, FireEye and many other security and security organizations to try to fix the problem. A patch for the exploited SolarWinds software has also been released.
Microsoft recommends that users do not turn off the Windows Update service. Most likely Microsoft will soon roll out security updates to ensure customers and users are safe.
You should read it
- The UN acknowledges that cyberattacks are extremely sophisticated and cannot identify the culprit
- Axie Infinity hacked with just a PDF file, the culprit is a North Korean hacker
- Microsoft Exchange server hacked by LockFile ransomware
- 5 signs that your family's surveillance camera has been hacked
- Microsoft admits that hacker Lapsus$ stole the source code
- How do hackers attack your Facebok account and how to prevent this process?
- Signs show clearly that your system is being hacked
- Computers that are not connected to the internet can still be hacked
May be interested
- 28 dangerous extensions you should immediately remove from Chrome and Microsoft Edgethese extesions can redirect users to advertising, phishing websites, crawling or downloading malicious code.
- 17 malicious apps on Android that users need to remove immediately from the phonea report from zscaler, a us cloud-based information security company headquartered in san jose (california), recently said that at least 17 apps on google play were found to contain joker malware, automatically subscribe to paid services without user consent.
- Detecting security holes that cause a series of D-Link VPN routers to be remotely attackedthree new security holes in d-link's vpn router have just been discovered by security firm digital defense.
- Selective Forwarding attack in wireless sensor networksin this type of selective forwarding attack, malicious nodes reject the request to facilitate some information packets and ensure that they are not forwarded any further.
- Besides Windows Defender, should users install other anti-virus and anti-malware software?in addition to anti-virus software, security experts recommend that users use additional tools to detect and block malware, adware, spyware, adware.
- How to block Google from tracking you on an Android phonegoogle uses user location data to improve service quality. but if you do not want to be tracked by google every move, you can absolutely perform the simple steps below.