Microsoft Corp says it found malicious software in its systems

The full version of the article, along with thousands like it, can be found on the following page: Microsoft Corp says it found malicious software in its systems

Microsoft

Microsoft has said that it has found malicious applications from its own systems associated with a huge hacking effort disclosed by US officials this week, including a top technology target to a growing list of attacked government bureaus.

The Redmond, Washington company is an individual of Orion, the widely used networking management software from SolarWinds Corp, that was utilized in the suspected Russian attacks on key US agencies and others.

Microsoft also had its own products leveraged to assault victims, said people knowledgeable about the issue.

"Like other SolarWinds customers, we have been actively looking for indicators of this actor and can confirm that we detected malicious Solar Winds binaries in our environment, which we isolated and removed," a Microsoft spokesperson said, adding that the company had discovered "no indications that our systems were used to attack others."

One of those people knowledgeable about the hacking spree said the hackers created use of Microsoft cloud offerings while preventing Microsoft's corporate infrastructure.

Microsoft did not immediately respond to questions concerning the technique.

However, another person familiar with the matter said the Department of Homeland Security (DHS) doesn't think Microsoft was a key route of new disease.

Both Microsoft and the DHS, which previously on Thursday said the hackers used multiple methods of entry, are continuing to research.

The FBI and other agencies have scheduled a classified briefing for members of Congress Friday.

The US Energy Department also said it has hackers gained access to its own networks as part of the effort.

The DHS said in a biography on Thursday that the hackers had used other techniques apart from corrupting upgrades of network management applications by SolarWinds that's used by countless thousands of companies and government agencies.

CISA urged investigators not to assume their organizations were secure if they did not use recent versions of their SolarWinds software, while also pointing out that the hackers didn't exploit every system they gained access also.

CISA said it was continuing to analyse the other paths used by the attackers. So far, the hackers have been known to possess at least tracked email or other data over the US departments of Defense, State, Treasury, Homeland Security and Commerce.

As many as 18,000 Orion customers downloaded the upgrades that comprised a back doorway, SolarWinds has stated. Since the campaign was found, software companies have cut off communication from those back doors to the computers maintained by the hackers.

However, the attackers might have installed additional methods of maintaining access, CISA said, in what some have called the biggest hack in a couple of years.

The Department of Justice, FBI and Defense Department, among others, have transferred regular communication onto classified networks that are believed not to have been violated, according to two people briefed on the measures. They are assuming that the non-classified networks have been accessed, the people said.

CISA and private companies including FireEye, which had been the first to detect and disclose it was hacked, have published a string of hints for organizations to look to determine if they've been hit.

But the attackers are extremely cautious and have deleted logs, or electronic footprints or which documents they've accessed, security experts said. That makes it difficult to know what's been taken.

Some significant companies have said they have "no evidence" that they were penetrated, but in a few instances which may just be because the proof was removed.

In most networks, the attackers could also have been able to make false data, but thus far it appears they had been interested in acquiring real data, people tracking the probes said.

Meanwhile, members of Congress are demanding more information about what might have been taken and , along with who was behind it. The House Homeland Security Committee and Oversight Committee announced an evaluation Thursday, while senators pushed to find out whether individual tax information was obtained.

The team at Platform Executive hope you have enjoyed this news article. Initial reporting via our official content partners at Thomson Reuters. Reporting by Joseph Menn and Chris Bing. Editing by Chris Sanders and Christopher Cushing.

Stay on top of the latest developments across the platform economy and gain access to our problem-solving tools, proprietary databases and content sets by becoming a member of our community. For a limited time, premium subscription plans start from just $7 per month.

This news article was published by Platform Executive, the home of the platform economy.

If you enjoy the content then please post a link on your website, or post on social media to help us get the word out.



Microsoft Corp says it found malicious software in its systems posted first on https://www.platformexecutive.com/

Comments

Post a Comment

Popular posts from this blog

4 tips for bouncing back from a business hardship

Image
The full version of the article, along with thousands like it, can be found on the following page: 4 tips for bouncing back from a business hardship Hardships can affect even the most successful businesses. If you’ve recently suffered a major setback within your company, it’s okay to feel discouraged. While hardships can be tough, they shouldn’t stop you from bouncing back. If you’re ready to pull your business out of a rough patch, read on for four tips to help you get back on your feet! #1 GO BACK TO YOUR COMPANY'S ROOTS If your business has come this far, there’s bound to be something you’ve done right. Sometimes hardship comes when you’ve strayed away from your original concept. If you’ve been testing out some new ideas that seem to miss the mark, try going back to your first business model and rework a new plan from there. It’s important to remember where the heart of your company truly lies, and what sets you apart from rivals , such as: Your minimum viable product
Read more

The 6 best resources to learn about database management

The full version of this article, along with thousands like it, can be found here: The 6 best resources to learn about database management Database management is one of the most sought-after skills in the technology industry. Top companies such as Google and Amazon include it regularly in technical interviews. If you are new to database management or it’s been a while since you’ve practiced, you might want to brush up on your skills before your next job opportunity. […] This article was published by Platform Executive , the home of the platform economy. If you enjoy the content then please post a link on your website, or share on social media to help us get the word out. The 6 best resources to learn about database management posted first on https://www.platformexecutive.com/
Read more

Google, Facebook agreed to team up against possible antitrust action, draft lawsuit says

Image
The full version of the article, along with thousands like it, can be found on the following page: Google, Facebook agreed to team up against possible antitrust action, draft lawsuit says Facebook and Alphabet Inc's Google agreed to "cooperate and assist one another" in case of an investigation into their pact to work together in online advertising, the Wall Street Journal has reported. The WSJ report cited an unredacted version of a lawsuit filed by 10 countries against Google last week. The nations had accused Google of working with Facebook within an unlawful manner that violated antitrust law to improve its already-dominant online advertising business. According to the report, the lawsuit said that Google and Facebook were aware that their arrangement could trigger antitrust investigations and discussed how to cope with them. A Google spokesperson told the Journal that such agreements over antitrust threats are incredibly common. The unredacted draft edition
Read more