 |
| SolarWinds hackers can access Microsoft's product code |
SolarWinds hackers are the worst-hit US government agency hackers in years and can access Microsoft's secret source code to authenticate a customer, contributing to one of the major attack methods.
In a blog post, Microsoft said: An internal investigation found that SolarWinds hackers were investigating part of the Azure cloud source code architecture related to identity, security, Exchange mail, calendar servers, and Intune cloud management solutions.
The company said it had downloaded code designed to give SolarWinds hackers more freedom to scan for vulnerabilities, make new bad copies, or check logic to find ways to exploit the client installation.
Microsoft previously said that SolarWinds hackers had access to some source code, but no part of it was mentioned or part of it copied.
US officials said the violations revealed in December spread to 9 federal agencies and 100 private companies, including major technology providers and security firms, saying the Russian government is likely to support the wave, which Moscow denies.
SolarWinds was originally detected by the FireEye security provider. The hacker then used advanced skills to introduce spyware backdoor into the network management software widely used in SolarWinds.
SolarWinds hackers have added new Azure data, elevated permissions to existing data, or compromised Microsoft software to steal email from thousands of SolarWinds customers.
Some hackers also use technologies like these for targets that SolarWinds do not use.
Microsoft previously acknowledged that some of its suppliers, who frequently access customer systems, were used for sabotage purposes, but it continued to deny the use of directly published vulnerabilities as a primary vector of attacks.
The company said: It has completed its investigation and found no evidence of its system being used to attack other systems.
However, it turns out that data management problems are so common in recent attacks that many security companies have released new policies, warnings, and tools to help them spot abuse.
President Joe Biden has pledged to respond to the SolarWinds hack, and the Senate Intelligence Committee will hold a hearing on Tuesday that will feature Microsoft Chairman Brad Smith (Brad Smith) Witness with Kevin Mandia, FireEye CEO.