SolarWinds Attackers Spent Months in Corporate Email System: Report

  /     /     /  
Publicated : 23/11/2024   Category : security

SolarWinds Attackers Spent Months in Corporate Email System: Report


SolarWinds CEO says evidence indicates attackers lurked in the companys Office 365 email system for months ahead of the attack.


As SolarWinds continues to investigate a cyberattack that led it to distribute infected software updates to thousands of organizations around the world, new evidence indicates that attackers were present in its Office 365 email system for months, The Wall Street Journal reports. 
In an interview this week, newly appointed SolarWinds CEO Sudhakar Ramakrishna said the attackers compromised some employee email accounts, which led them to then compromise other email accounts and, as a result, its broader Office 365 environment.
SolarWinds is still working to determine how and when attackers first breached its internal network, the report states, noting at least one Office 365 account was accessed by December 2019. It is possible attackers compromised Office 365 accounts even earlier and used this as a foothold to get into the company, Ramakrishna said, though this is only one of many potential scenarios. 
Since taking the role of CEO, Ramakrishna has hired outside experts to aid in breach recovery including former US cybersecurity official Chris Krebs and former Facebook security chief Alex Stamos,
who recently teamed up
to form a consulting business. Under his leadership, the company has also changed its software development processes, the report states. 
Read the
full WSJ report
for more information.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
SolarWinds Attackers Spent Months in Corporate Email System: Report