More+
1 min (s) to read

Disclaimer: We may earn a commission if you make any purchase by clicking our links. Please see our detailed guide here.

Follow us on:

Microsoft

SolarWinds hackers Now Strike Global IT Supply Chains: Microsoft

IANS
IANS
Lorem Ipsum is simply dummy text of the printing and typesetting industry. Lorem Ipsum has been the industry's standard dummy text ever since the 1500s, when an unknown printer took a galley of type and scrambled it to make a type specimen book.
hacker wearing a Guy Fawkes mask | Image credit: Clint Patterson/Unsplash

Join the Opinion Leaders Network

Join the Techgenyz Opinion Leaders Network today and become part of a vibrant community of change-makers. Together, we can create a brighter future by shaping opinions, driving conversations, and transforming ideas into reality.

Join Now

Microsoft has warned that the Russia-based cybercriminals, behind the massive SolarWinds software attack last year, are on the prowl again, this time targeting organizations integral to the global IT supply chain.

The Russian nation-state actor ‘Nobelium’ has targeted at least 140 resellers and technology service providers in global IT supply chains, it said.

“Since May, we have notified more than 140 resellers and technology service providers that have been targeted by Nobelium. We continue to investigate, but to date, we believe as many as 14 of these resellers and service providers have been compromised,” said Tom Burt, CVP, Customer Security, and Trust, at Microsoft.

‘Nobelium’ was behind the cyberattacks targeting SolarWinds customers in 2020, and which the US government and others have identified as being part of Russia’s foreign intelligence service known as the SVR.

“This time, it is attacking a different part of the supply chain: resellers and other technology service providers that customize, deploy and manage cloud services and other technologies on behalf of their customers,” Burt said in a statement late on Sunday.

‘Nobelium’ ultimately hopes to piggyback on any direct access that resellers may have to their customers’ IT systems and more easily impersonate an organization’s trusted technology partner to gain access to their downstream customers.

The attacks have been a part of a larger wave of Nobelium activities this summer, according to the tech giant.

“In fact, between July 1 and October 19 this year, we informed 609 customers that they had been attacked 22,868 times by Nobelium, with a success rate in the low single digits,” said Burt.

By comparison, prior to July 1, 2021, Microsoft had notified customers about attacks from all nation-state actors 20,500 times over the past three years.

“This recent activity is another indicator that Russia is trying to gain long-term, systematic access to a variety of points in the technology supply chain and establish a mechanism for surveilling – now or in the future – targets of interest to the Russian government,” Microsoft noted.

Nation-state actors, cybercriminals, and other malicious actors continue to target weaknesses in software supply chains and many vendors don’t have the tools or expertise to stop them.

Microsoft has said it would invest $20 billion in the next five years on cyber security.

Partner With Us

Digital advertising offers a way for your business to reach out and make much-needed connections with your audience in a meaningful way. Advertising on Techgenyz will help you build brand awareness, increase website traffic, generate qualified leads, and grow your business.

Know More
Join 10,000+ Fellow Readers

Get Techgenyz’s roundup delivered to your inbox curated with the most important for you that keeps you updated about the future tech, mobile, space, gaming, business and more.

Recomended

Find Apps

The Ultimate Hub for Discovering Apps Unlock a world of apps: your ultimate hub for exploring and discovering limitless possibilities for on your every needs.

Explore

Power Your Business

Solutions you need to super charge your business and drive growth

See All
tg Aff Semrush

Semrush

Beat your competitor's SEO and PPC strategy with the world's leading competitive intelligence software for digital marketing—a complete workflow and all-in-one marketing toolkit for digital marketing professionals.
Beat your competitor's SEO and PPC strategy with the world's...
Get it for free
tg Aff OptinMonster

OptinMonster

Instantly boost leads and grow revenue with the #1 most powerful conversion optimization toolkit in the world. 700,000+ websites are using OptinMonster to turn their traffic into leads, subscribers, and sales.
Instantly boost leads and grow revenue with the #1 most powe...
Get it for free
tg Aff WP Engine

WP Engine

WP Engine drives your business forward faster with the first and only WordPress Digital Experience Platform with the best WordPress hosting. Hosting fast, reliable, and secure WordPress sites.
WP Engine drives your business forward faster with the first...
Get it for free
Tidio Logo Square

Tidio

Solve up to 70% of customer problems with conversational AI using Tidio. Get started free, turn conversations into sales opportunities with Live Chat and Chatbots, and provide hands-on support.
Solve up to 70% of customer problems with conversational AI ...
Get it for free

More from this topic