Microsoft Corp. said hackers based on the SolarWinds attacks recently disrupted three-quarters of the victims who used access to one of the company's customer support Branch.
The hacking site used by each agent contained information about "a small number of customers," the attackers used to launch "highly targeted" attacks, Microsoft said on Friday in a blog post. The company said it had removed the attackers and protected the damaged device.(ads2)
Microsoft did not identify the victims, but said it had warned intruders about its privacy policy. Microsoft's Threat Intelligence Center says the attack took place in a group called "Nobelium." This is the same group of Russian government-sponsored hackers who use sophisticated methods to enter the 2020 malware infection of 18,000 customers of a Texas software company, SolarWinds Corp.
Microsoft said Nobelium targeted IT companies, governments, nonprofits, think tanks and financial services organizations in 36 countries during the recent attacks. "The work was largely focused on U.S. interests, about 45%, followed by 10% in the U.S., and small numbers from Germany and Canada," a software developer from Redmond, Washington on the blog.
Posts
