Cyberwarfare / Nation-State Attacks , Endpoint Security , Forensics
Threat Actors Accessed 'Limited Subset of Internal Company Emails' Prajeet Nair (@prajeetspeaks) • January 20, 2021The CEO of security firm Malwarebytes says the hackers who attacked SolarWinds also targeted his company and gained access to a "limited subset of internal company emails."
See Also: Top 50 Security Threats
"While Malwarebytes does not use SolarWinds [hacked software], we, like many other companies, were recently targeted by the same threat actor," Malwarebytes CEO Marcin Kleczynski notes in a blog. The hackers appear to have exploited a dormant email protection tool within the company's Office 365 system to gain access to a subset of the firm's emails, he says.
Malwarebytes was notified about the intrusion on Dec. 15, 2020, by the Microsoft Security Response Center. This was about the same time Microsoft notified security firm CrowdStrike of similar suspicious activity (see: Microsoft Warned CrowdStrike of Possible Hacking Attempt).
And while the hacking group responsible for the SolarWinds hack managed to plant a malicious backdoor in the company's Orion network monitoring platform, the Cybersecurity and Infrastructure Security Agency has warned that the hackers used other attack vectors to target additional networks.
Kleczynski notes that ..
Support the originator by clicking the read the rest link below.
