124
โThis week we observed cyberattacks by the threat actor Nobelium targeting government agencies, think tanks, consultants, and non-governmental organizationsโ, Microsoft said in a blog.
 |
| The SolarWinds security breach and its related cybersecurity attacks is extremely wide-ranging and comprehensive |
The group behind the SolarWinds cyber attack identified late last year is now targeting government agencies, think tanks, consultants, and non-governmental organizations, Microsoft Corp said on Thursday.
โThis week we observed cyberattacks by the threat actor Nobelium targeting government agencies, think tanks, consultants, and non-governmental organizationsโ, Microsoft said in a blog.
Nobelium, originating from Russia, is the same actor behind the attacks on SolarWinds customers in 2020, according to Microsoft.
The comments come weeks after a May 7 ransomware attack on Colonial Pipeline shut the United Statesโ largest fuel pipeline network for several days, disrupting the countryโs supply.
โThis wave of attacks targeted approximately 3,000 email accounts at more than 150 different organizationsโ, Microsoft said on Thursday.
While organisations in the United States received the largest share of attacks, targeted victims came from at least 24 countries, Microsoft said.
At least a quarter of the targeted organisations were involved in international development, humanitarian issues and human rights work, Microsoft said in the blog.
Nobelium launched this weekโs attacks by breaking into an email marketing account used by the United States Agency For International Development (USAID) and from there launching phishing attacks on many other organisations, Microsoft said.
The hack of information technology company SolarWinds, which was identified in December, gave access to thousands of companies and government offices that used its products. Microsoft President Brad Smith described the attack as โthe largest and most sophisticated attack the world has ever seenโ.
This month, Russiaโs spy chief denied responsibility for the SolarWinds cyber attack but said he was โflatteredโ by the accusations from the United States and Britain that Russian foreign intelligence was behind such a sophisticated hack.
The United States and Britain have blamed Russiaโs Foreign Intelligence Service (SVR), successor to the foreign spying operations of the KGB, for the hack which compromised nine US federal agencies and hundreds of private sector companies.
The attacks disclosed by Microsoft on Thursday appeared to be a continuation of multiple efforts to target government agencies involved in foreign policy as part of intelligence gathering efforts, Microsoft said.
The company said it was in the process of notifying all of its targeted customers and had โno reason to believeโ these attacks involved any exploitation or vulnerability in Microsoftโs products or services.
REUTERS
