While researchers may want to invest time and energy towards attributing the latest high-profile attack to a particular adversary, more productive is the ability to see similarities in the underlying techniques employed in the attack were to prior attacks.
The DHS advisory covers the various Chinese laws allowing Beijing to access data with employees, leadership, or ownership within its borders.
Former NSA Chief Security Officer Chris Kubic, now CSO at Fidelis, spoke with SC Media about the current focus in the Pentagon, much like the private sector, to track down any impacted systems, while scrambling to get updated detection signatures.
Smith suggested a three-point plan he believed would prevent further supply chain attacks: Increasing intelligence sharing between government and the private sector, developing stronger international norms for acceptable behavior in cyberespionage, and finding harsher ways to hold governments accountable.
SolarWinds customers – over 300,000 of them, including most of the Fortune 500 – must determine what was breached, mitigate the damage before using the software again, and explore new supply chain safeguards.
Impact of the supply chain attacks are not limited to government, with consulting, technology, and telecom sectors all caught in the crosshairs.
The threat intelligence giant said it suspects an unnamed nation state hacking group was behind the effort.
NSA strongly urged network administrators that work in or with the Defense Department to prioritize patching, but the vulnerability extends to all companies that rely on the VMWare products.
The attack featured a new strain of malware that was spotted in the wild, which centers around a backdoor aims to take over user devices.
The Crutch toolset was designed to exfiltrate sensitive documents and other files to DropBox accounts controlled by Turla operators.
