You might want to check in with your SecOps team this morning. The Cybersecurity and Infrastructure Security Agency (CISA) warned of a “grave threat” to government and private networks from a long-undetected intrusion into U.S. (and other) computer systems around the globe. Officials suspect Russian hackers, but this hack is so massive (and so well executed) that it’s unclear who is responsible.
In a statement, CISA warned that the hack compromised federal agencies and “critical infrastructure” in a sophisticated attack that was hard to detect and will be difficult to undo. Unfortunately, they did not define “grave threat” or disclose what “critical infrastructure” may have been targeted in the attack, which is suspected to have begun last March.
It looks like the hackers exploited SolarWinds’s network management software to carry out the attack. This story is unfolding and many of the details are still unavailable, but one thing is clear: “There are only two kinds of companies: those that have been hacked and those who don’t know they’ve been hacked.”
Author’s note: This is not a sponsored post. I am the author of this article and it expresses my own opinions. I am not, nor is my company, receiving compensation for it.