![russian hack solarwinds russian hack solarwinds](https://media.npr.org/assets/img/2021/10/25/gettyimages-1232331067-2f82782f042937911482be7713dcd8938b316f3d-s1100-c50.jpg)
The breach reportedly included an email system used by senior leadership at the Treasury Department.
#Russian hack solarwinds update#
The joint statement added that, of the 18,000 affected organizations, a much smaller number were "compromised by follow-on activity on their systems." The targets that saw further compromise after installing the tainted update include fewer than 10 government agencies. The Cyber Unified Coordination Group, made up of the FBI, NSA, CISA and ODNI, continues to investigate the hack. Tuesday's statement didn't attribute the SolarWinds hack to a specific APT, but government sources have reportedly blamed APT29, nicknamed Cozy Bear, for the attack.
![russian hack solarwinds russian hack solarwinds](https://foreignpolicy.com/wp-content/uploads/2021/01/cyberattack-hackers-russia-gru-svr-solarwinds-virus.jpg)
CISA issued a statement in December acknowledging an ongoing compromise, carried out by an advanced persistent threat, affecting government and private organizations.Īdvanced persistent threats are hacking groups identified by cybersecurity experts and government intelligence agencies that appear to have significant resources and skills, and are frequently affiliated with a nation-state. US Secretary of State Mike Pompeo said in an interview in December that the hack was likely of Russian origin, but there had been no formal attribution until now. The hackers placed malicious code into a legitimate update to a widely used SolarWinds software product, and around 18,000 of the company's customers installed the tainted update.
![russian hack solarwinds russian hack solarwinds](https://amp.insurancejournal.com/app/uploads/2021/03/cyber-graphic-bloomberg-580x367.jpg)
The hack started in March 2020 at the latest, when hackers compromised IT management software from Austin, Texas-based company SolarWinds, which has thousands of customers in the public and private sectors. Read more: SolarWinds hack continues to spread: What you need to know