Advertisement

U.S. government SolarWinds hack was largest, ‘most sophisticated attack’ ever: Microsoft

Click to play video: 'FireEye CEO says SolarWinds hack was found after security staff noticed issue with employee account'
FireEye CEO says SolarWinds hack was found after security staff noticed issue with employee account
WATCH ABOVE: FireEye CEO says SolarWinds hack was found after security staff noticed issue with employee account – Feb 14, 2021

A hacking campaign that used a U.S. tech company as a springboard to compromise a raft of U.S. government agencies is “the largest and most sophisticated attack the world has ever seen,” Microsoft Corp President Brad Smith said.

The operation, which was identified in December and that the U.S. government has said was likely orchestrated by Russia, breached software made by SolarWinds Corp, giving hackers access to thousands of companies and government offices that used its products.

The hackers got access to emails at the U.S. Treasury, Justice and Commerce departments and other agencies.

Cybersecurity experts have said it could take months to identify the compromised systems and expel the hackers.

Story continues below advertisement

“I think from a software engineering perspective, it’s probably fair to say that this is the largest and most sophisticated attack the world has ever seen,” Smith said during an interview that aired on Sunday on the CBS program “60 Minutes.”

Click to play video: 'Russian hackers target COVID-19 vaccine research in Canada, U.S. and U.K. according to intelligence agency'
Russian hackers target COVID-19 vaccine research in Canada, U.S. and U.K. according to intelligence agency

The breach could have compromised up to 18,000 SolarWinds customers that used the company’s Orion network monitoring software, and likely relied on hundreds of engineers.

For news impacting Canada and around the world, sign up for breaking news alerts delivered directly to you when they happen.

Get breaking National news

For news impacting Canada and around the world, sign up for breaking news alerts delivered directly to you when they happen.
By providing your email address, you have read and agree to Global News' Terms and Conditions and Privacy Policy.

“When we analyzed everything that we saw at Microsoft, we asked ourselves how many engineers have probably worked on these attacks. And the answer we came to was, well, certainly more than 1,000,” Smith said.

Click to play video: 'Russian national charged over two of the worst hacking, bank fraud in past decade'
Russian national charged over two of the worst hacking, bank fraud in past decade

U.S. intelligence services said last month that Russia was “likely” behind the SolarWinds breach, which they said appeared to be aimed at collecting intelligence rather than destructive acts.

Story continues below advertisement

Russia has denied responsibility for the hacking campaign.

(Reporting by Brad Heath; Editing by Heather Timmons and Peter Cooney)

Sponsored content

AdChoices