iTWire - Attackers hit US Treasury through Microsoft Office 365; SolarWinds open...
source link: https://www.itwire.com/security/attackers-gain-access-to-us-treasury-through-microsoft-office-365.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Monday, 14 December 2020 08:03
Attackers hit US Treasury through Microsoft Office 365; SolarWinds opens door to others Featured
By Sam Varghese
Image by Gerd Altmann from Pixabay
Microsoft software has once again proved to be the weak link and opened the path for cyber attacks, this time to the US Treasury Department and an entity that deals with Internet and telco policy. The network management software SolarWinds appears to have opened the door for other agencies to be attacked.
Reuters reported that exploiting a vulnerability in Microsoft Office 365 was the route the attackers took to break into the National Telecommunications and Information Administration, a part of the US Commerce Department.
The Washington Post later reported that Russian attackers hit the Treasury and also hit FireEye, with the network management software SolarWinds implicated.
The Post reporter who wrote this story is the same person who started the now-discarded theory that Russia was responsible for email leaks to WikiLeaks during the 2016 presidential election.
The source who fed the information to Reuters, very likely an intelligence agency given that the report was written by Chris Bing, who was responsible for many similar stories at his former billet, CyberScoop, also said the intrusion was considered serious enough to merit a meeting of the US National Security Council on Saturday.
The SolarWinds network management system appears to have been compromised at source, with the company issuing a statement on Sunday saying that updates it released between March and June could have been corrupted.
SolarWinds NMS is used by about 400 of the so-called Fortune 500. Its customers include the top telcos, the US military, the US State Department, the NSA and the Office of the President of the US.
NSC spokesman John Ullyot was quoted as saying: “We are taking all necessary steps to identify and remedy any possible issues related to this situation."
As usual, when such stories are published they invariably claim that the attackers are from a foreign government and "sophisticated". This time, Bing went a step higher and cited his sources as describing the attackers as "highly sophisticated".
Some commenters on Twitter attempted to tie the intrusion to the recent sacking of Christopher Krebs, the head of the Department of Homeland Security's Cyber Security and Infrastructure Security Agency.
Others questioned whether there was any connection between the attack and the theft of attack tools from the US cyber security firm FireEye last week.
A third category was inclined to blame the Trump administration, saying that it was a bid to sanitise material that would be damaging to the outgoing president.
iTWire has contacted Microsoft for comment.
Subscribe to ITWIRE UPDATE Newsletter here
Now’s the Time for 400G Migration
The optical fibre community is anxiously awaiting the benefits that 400G capacity per wavelength will bring to existing and future fibre optic networks.Nearly every business wants to leverage the latest in digital offerings to remain competitive in their respective markets and to provide support for fast and ever-increasing demands for data capacity. 400G is the answer.
Initial challenges are associated with supporting such project and upgrades to fulfil the promise of higher-capacity transport.
The foundation of optical networking infrastructure includes coherent optical transceivers and digital signal processing (DSP), mux/demux, ROADM, and optical amplifiers, all of which must be able to support 400G capacity.
With today’s proprietary power-hungry and high cost transceivers and DSP, how is migration to 400G networks going to be a viable option?
PacketLight's next-generation standardised solutions may be the answer. Click below to read the full article.
WEBINAR PROMOTION ON ITWIRE: It's all about webinars
These days our customers Advertising & Marketing campaigns are mainly focussed on webinars.If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.
The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://www.itwire.com/itwire-update.html and Promotional News & Editorial.
This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.
We have a Webinar Business Booster Pack and other supportive programs.
We look forward to discussing your campaign goals with you.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK