New York

Homeland Security warns that Russia may have hacked federal agencies

According to the Department of Homeland Security, federal agencies cut off servers that could have been compromised during months of suspected Russian hacking by the Treasury and Commerce, scanning the network and “malicious.” I was ordered to look for an “attacker with”.

“Tonight’s Directive aims to mitigate potential breaches within the federal private network. All partners in the public and private sectors will be evaluated for exposure to this breach and will network from any abuse. It is advisable to protect it, “DHS’s Cyber ​​Security and Infrastructure Security Agency said in a statement late Sunday.

This is the fifth emergency directive issued by the CISA since 2015.

Reuters’ first reported intrusion into the financial and commercial system is believed to be related to a breach by US cybersecurity firm FireEye.

A hacker could have taken advantage of SolarWinds, the server software used by many government agencies and the majority of Fortune 500 companies, to break into the system.

The directive warned that “a breach of SolarWinds’ Orion network management products poses an unacceptable risk to the security of federal networks.”

According to the Associated Press, FireEye said a hacking investigation identified a “global campaign” targeting private sector governments and businesses by inserting malware into SolarWinds updates since last spring.

The malware has given hackers remote access to compromised computer networks for several months.

FireEye said it had confirmed invasion into North America, Europe, Asia, and the Middle East.

US Treasury Building
US Treasury Building
AP

SolarWinds has a “potential vulnerability” associated with a March-June update of a software product called Orion, and is working with the FBI, FireEye, and US intelligence, AP reported.

“We believe this vulnerability is the result of a highly sophisticated, targeted manual supply chain attack by the state,” SolarWinds CEO Kevin Thompson said in a statement. I will.

The Washington Post reported that the FBI is investigating whether groups connecting to the Russian Foreign Intelligence Service (SVR) are behind the attack.

A cyber-spy group known as APT29 and CosyBear was behind the hacks of the Secretary of State and the White House in 2014, and the Democratic National Committee during the 2016 presidential election.

Kremlin spokesman Dmitry Peskov denied Russia’s involvement.

“Once again, I can reject these accusations,” Peskov told reporters. “If Americans couldn’t do anything about it for months, they probably shouldn’t blame the Russians for everything.”

Homeland Security warns that Russia may have hacked federal agencies

Source link Homeland Security warns that Russia may have hacked federal agencies

Back to top button