Добавить новость
ru24.net
News in English
Декабрь
2021

SolarWinds hackers have a whole bag of new tricks for mass compromise attacks

0

Enlarge

Almost exactly a year ago, security researchers uncovered one of the worst data breaches in modern history, if not ever: a Kremlin-backed hacking campaign that compromised the servers of network management provider SolarWinds and, from there, the networks of 100 of its highest-profile customers, including nine US federal agencies.

Nobelium—the name Microsoft gave to the intruders—was eventually expelled, but the group never gave up and arguably has only become more brazen and adept at hacking large numbers of targets in a single stroke. The latest reminder of the group’s proficiency comes from security firm Mandiant, which on Monday published research detailing Nobelium’s numerous feats—and a few mistakes—as it continued to breach the networks of some of its highest-value targets.

Abusing trust

One of the things that made Nobelium so formidable was the creativity of its TTPs, hacker lingo for tactics, techniques, and procedures. Rather than breaking into each target one by one, the group hacked into the network of SolarWinds and used the access, and the trust customers had in the company, to push a malicious update to roughly 18,000 of its customers.

Read 15 remaining paragraphs | Comments




Moscow.media
Частные объявления сегодня





Rss.plus




Спорт в России и мире

Новости спорта


Новости тенниса
WTA

«Мечта осуществилась»: Андреева выиграла турнир в Дубае и ворвалась в топ-10 рейтинга WTA






Появилось видео с пожаром после взрыва рядом с ЖК «Ривер парк»

Партнер казанских кинорежиссеров запускает свой фильм с «Мисс Европа-2024»

SHOT: экстренно севший в Пулково самолет пять часов летел на одном двигателе

Раннюю весну сменит холодный май. Летом - катастрофы: Прогноз синоптиков до осени 2025 года