https://edition.cnn.com/2020/12/17/poli ... index.html
https://edition.cnn.com/2020/12/17/poli ... index.htmlThe software that the suspected Russian malware was delivered with, SolarWinds Orion, has as many as 18,000 global customers, including government agencies, private companies and other organizations. Microsoft said Thursday that the attack "reached many major national capitals outside Russia."
"The attack unfortunately represents a broad and successful espionage-based assault on both the confidential information of the U.S. Government and the tech tools used by firms to protect them," Smith wrote. "The attack is ongoing and is being actively investigated and addressed by cybersecurity teams in the public and private sectors, including Microsoft."
"It appears the Russians had six to nine months of 'persistent access' to some Department of Homeland Security networks," said Tony Lawrence, CEO and founder of Light Rider, a cybersecurity firm that has clients in both the public and private sector. "If this is the case, it means the Russians had the ability to navigate all networks and control select US homeland security networks during this time."