Tue. Dec 7th, 2021

There is Microsoft About a recent cyber attack campaign organized by a Russian state-sponsored group For last year’s devastation Pony. The company’s cybersecurity experts warned that despite the presence of President Joe Biden, Nobellium is once again trying to access government and corporate networks around the world. Than previous cyber attacks.

According to Microsoft, the group is using the same strategy that it employed in the successful SolarWinds attack – targeting companies whose products form key parts of global IT systems. In the campaign, Microsoft said, Nobleium focused on a different side of the IT supply chain, namely resellers and service providers who provide cloud services and other technologies.

The company said it had informed more than 140 suppliers and resellers that the group had targeted them. It is believed that Nobellium violated 14 networks of these companies. But Microsoft says it has identified the campaign , Which will help reduce falls.

Microsoft notes that these hacking efforts are part of a massive series of attacks led by Nobleium in the past few months. Between July 1st and October 1st, it informed its 909 customers that Nobellium had tried to hack them on 22.8 occasions, with less than 10 successes. In the three years leading up to July 1, Microsoft had promised its customers 20,500 attacks from all nation-state actors – not just Nobleium.

“This latest activity features Nobellium’s compromise-one-to-ups-many approach and the use of a varied and dynamic toolkit that includes sophisticated malware, password spray, supply chain attacks, token theft, API abuse. [and] Spear Phishing, “Microsoft’s Security Intelligence Division . Also known as Nobleum Cozy Bear and APT29.

In 2020, hackers created a backdoor to a SolarWinds product called Orion, which used about 30,000 customers in both the public and private sectors. Nobleium has reportedly hacked into the systems of nine US companies and about 100 companies. Other hackers Piggybacked At the back door to facilitate their own attack. United States Six Russian companies and 32 individuals and entities were arrested in April for alleged misconduct in connection with the Solarwinds attack. .

“This recent activity is another indication that Russia is seeking long-term, systematic access to various points in the technology supply chain, and is trying to establish a system for conducting surveys in the interest of the Russian government – now or in the future,” said Tom Burt, Microsoft Corp. Vice President, Wrote in a blog post.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories have affiliate links. If you purchase something through one of these links, we may receive an approved commission.

Source link

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *