Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Microsoft Security

Microsoft Says Russia Hacked at Least 14 IT Service Providers this Year (therecord.media) 29

Microsoft said on Monday that a Russian state-sponsored hacking group known as Nobelium had attacked more than 140 IT and cloud services providers, successfully breaching 14 companies. From a report: The Microsoft Threat Intelligence Center (MSTIC) said the attacks were part of a planned campaign that began in May this year. The attacks included spear-phishing campaigns and password-spraying operations that targeted employees of companies that manage IT and cloud infrastructure on behalf of their clients. "We believe Nobelium ultimately hopes to piggyback on any direct access that resellers may have to their customers' IT systems and more easily impersonate an organization's trusted technology partner to gain access to their downstream customers," said Tom Burt, Corporate Vice President for Customer Security & Trust at Microsoft.
This discussion has been archived. No new comments can be posted.

Microsoft Says Russia Hacked at Least 14 IT Service Providers this Year

Comments Filter:
  • This is the best part right here "Microsoft did not reveal the names of any of the 14 IT and cloud service providers successfully compromised in this campaign." So the people who were compromised by this potentially don't even know because protecting those providers is more important than protecting those who trusted those providers.
    • This is the best part right here "Microsoft did not reveal the names of any of the 14 IT and cloud service providers successfully compromised in this campaign."

      Professional courtesy

    • True story: Once upon a time my parents paid someone to hack me. This person they hired couldn't, and confessed this to me directly from a former friend's hacked IM account, then went on to say it didn't matter because they'd be paid in full anyway just for claiming to have hacked me, and nobody else would bother to verify it. I wouldn't have believed it at all, having had no interaction with my estranged parents decades by then, until dozens of other random estranged relatives and former co-workers came

    • Also the estimate of "over 140" targets attacked is probably short by a few billion.

  • Probably nuking the entire site is an over reaction, but how to get Russia off the internet otherwise?
  • How much By China, The US, Israel?

  • How do they know their names? Do they tell them "we are Nobelium!" Or "we are Fancy Bear!". Or is it the Americans who assign the names?
    Buy the way, I doubt it very much that a programmer from Russia with his level of English (usually only enough to read technical documentation in English) can come up with such a name as "Fancy Bear". It's too idiomatic. Russian media even struggle to translate "Fancy Bear" to Russian in the news. Too many meanings of the word "fancy". They don't know which one to choose.
  • Fixed that. Have a great day ;)
  • I have read the blog post and the "report", and it seems little more than a marketing issue. "We have seen a series of attacks and hence you have to install our defensive software." In total, they are making three claims: 1. Some companies were hacked. 2. It is the same group that had been responsible for hacking SolarWinds some time ago. 3. It is somehow related to one of the Russian state security agencies. I haven't found any evidence to support any of these claims. The claim that there was an attack i

Real programmers don't bring brown-bag lunches. If the vending machine doesn't sell it, they don't eat it. Vending machines don't sell quiche.

Working...