Top national security agencies in a rare joint statement Tuesday confirmed that Russia was likely responsible for a massive hack of U.S. government departments and corporations, rejecting President Donald Trump’s claim that China might be to blame.
The statement represented the U.S. government’s first formal attempt to assign responsibility for the breaches at multiple agencies and to assign a possible motive for the operation. It said the hacks appeared to be intended for “intelligence-gathering,” suggesting the evidence so far pointed to a Russian spying effort rather than an attempt to damage or disrupt U.S. government operations.
“This is a serious compromise that will require a sustained and dedicated effort to remediate,” said the statement, distributed by a cyber working group comprised of the FBI and other investigative agencies.
The hacking campaign amounts to Washington’s worst cyberespionage failure to date. The intruders had been stalking through government agencies, defense contractors and telecommunications companies for at least seven months when it was discovered. Experts say that gave the foreign agents ample time to collect data that could be highly damaging to U.S. national security, though the scope of the breaches and exactly what information was sought is unknown.
The hacking campaign was extraordinary in its scale — 18,000 organizations were infected earlier this year by malicious code that piggybacked on popular network-management software from an Austin, Texas, company called SolarWinds. Of those 18,000 customers, the statement said, “a much smaller number have been compromised by follow-on activity on their systems,” with fewer than 10 federal government agencies falling into that category.
