You might want to check in with your SecOps team this morning. The Cybersecurity and Infrastructure Security Agency (CISA) warned of a “grave threat” to government and private networks from a long-undetected intrusion into U.S. (and other) computer systems around the globe. Officials suspect Russian hackers, but this hack is so massive (and so well executed) that it’s unclear who is responsible.

In a statement, CISA warned that the hack compromised federal agencies and “critical infrastructure” in a sophisticated attack that was hard to detect and will be difficult to undo. Unfortunately, they did not define “grave threat” or disclose what “critical infrastructure” may have been targeted in the attack, which is suspected to have begun last March.

It looks like the hackers exploited SolarWinds’s network management software to carry out the attack. This story is unfolding and many of the details are still unavailable, but one thing is clear: “There are only two kinds of companies: those that have been hacked and those who don’t know they’ve been hacked.”

Author’s note: This is not a sponsored post. I am the author of this article and it expresses my own opinions. I am not, nor is my company, receiving compensation for it.

About Shelly Palmer

Shelly Palmer is a business advisor and technology consultant. He helps Fortune 500 companies with digital transformation, media and marketing. Named LinkedIn's Top Voice in Technology, he is the co-host of "Think About This with Shelly Palmer & Ross Martin." He covers tech and business for Good Day New York, writes a weekly column for Adweek, is a regular commentator on CNN and CNBC, and writes a popular daily business blog. Follow @shellypalmer or visit shellypalmer.com

Tags

Categories

PreviousFacebook vs. Apple or "Godzilla vs. Kong" NextWhat You Should Do About the SolarWinds Hack

Get Briefed Every Day!

Subscribe to my daily newsletter featuring current events and the top stories in technology, media, and marketing.

Subscribe