Why the SolarWinds cyberattack isn't over
The Verge editor-in-chief Nilay Patel joins CNBC's "Squawk Alley" team to discuss the cyberattack on U.S. agencies and corporations, including Microsoft. For access to live and exclusive video from CNBC subscribe to CNBC PRO: https://cnb.cx/2NGeIvi
CISA said those behind the attack used network management software made by SolarWinds, a Texas-headquartered IT firm, to breach the government networks.
As many as 18,000 SolarWinds Orion customers downloaded a software update that contained a backdoor, which the hackers used to gain access to the networks.
CISA issued an “emergency directive” this week instructing federal civilian agencies to “immediately disconnect or power down affected SolarWinds Orion products from their network.”
But the perpetrators may have used other means to access the networks. CISA said Thursday is investigating “evidence of additional access vectors, other than the SolarWinds Orion platform.”
Microsoft was hacked in connection with the attack on SolarWinds’ widely used management software, Reuters reported Thursday.
Like with the cyberattack of SolarWinds, hackers infiltrated Microsoft products and then went after others, Reuters said, citing people familiar with the matter.
“We have been actively looking for indicators of this actor and can confirm that we detected malicious SolarWinds binaries in our environment, which we isolated and removed. We have not found evidence of access to production services or customer data,” a Microsoft spokesperson said in a statement shared with CNBC.
“Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others,” they added.
Microsoft said that more than 40 client organizations were compromised in the attack.
“While roughly 80% of these customers are located in the United States, this work so far has also identified victims in seven additional countries,” Microsoft President Brad Smith said in a blog.
“This includes Canada and Mexico in North America; Belgium, Spain and the United Kingdom in Europe; and Israel and the UAE in the Middle East. It’s certain that the number and location of victims will keep growing.”
Smith added that “this is not espionage as usual” and “while governments have spied on each other for centuries, the recent attackers used a technique that has put at risk the technology supply chain for the broader economy.”
U.S. President-elect Joe Biden pledged Thursday to make cybersecurity a key area of focus for his administration.
“A good defense isn’t enough; We need to disrupt and deter our adversaries from undertaking significant cyberattacks in the first place,” Biden said in a statement issued by his transition team.
“We will do that by, among other things, imposing substantial costs on those responsible for such malicious attacks, including in coordination with our allies and partners. Our adversaries should know that, as President, I will not stand idly by in the face of cyber assaults on our nation.”
President Donald Trump, who has been silent about the hacking, threatened on Thursday to veto the National Defense Authorization Act, which includes money to help prevent such cyberattacks.
» Subscribe to CNBC TV: https://cnb.cx/SubscribeCNBCtelevision
» Subscribe to CNBC: https://cnb.cx/SubscribeCNBC
» Subscribe to CNBC Classic: https://cnb.cx/SubscribeCNBCclassic
Turn to CNBC TV for the latest stock market news and analysis. From market futures to live price updates CNBC is the leader in business news worldwide.
The News with Shepard Smith is CNBC’s daily news podcast providing deep, non-partisan coverage and perspective on the day’s most important stories. Available to listen by 8:30pm ET / 5:30pm PT daily beginning September 30: https://www.cnbc.com/2020/09/29/the-news-with-shepard-smith-podcast.html?__source=youtube%7Cshepsmith%7Cpodcast
Connect with CNBC News Online
Get the latest news: http://www.cnbc.com/
Follow CNBC on LinkedIn: https://cnb.cx/LinkedInCNBC
Follow CNBC News on Facebook: https://cnb.cx/LikeCNBC
Follow CNBC News on Twitter: https://cnb.cx/FollowCNBC
Follow CNBC News on Instagram: https://cnb.cx/InstagramCNBC
https://www.cnbc.com/select/best-credit-cards/
#CNBC
#CNBCTV
Видео Why the SolarWinds cyberattack isn't over канала CNBC Television
CISA said those behind the attack used network management software made by SolarWinds, a Texas-headquartered IT firm, to breach the government networks.
As many as 18,000 SolarWinds Orion customers downloaded a software update that contained a backdoor, which the hackers used to gain access to the networks.
CISA issued an “emergency directive” this week instructing federal civilian agencies to “immediately disconnect or power down affected SolarWinds Orion products from their network.”
But the perpetrators may have used other means to access the networks. CISA said Thursday is investigating “evidence of additional access vectors, other than the SolarWinds Orion platform.”
Microsoft was hacked in connection with the attack on SolarWinds’ widely used management software, Reuters reported Thursday.
Like with the cyberattack of SolarWinds, hackers infiltrated Microsoft products and then went after others, Reuters said, citing people familiar with the matter.
“We have been actively looking for indicators of this actor and can confirm that we detected malicious SolarWinds binaries in our environment, which we isolated and removed. We have not found evidence of access to production services or customer data,” a Microsoft spokesperson said in a statement shared with CNBC.
“Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others,” they added.
Microsoft said that more than 40 client organizations were compromised in the attack.
“While roughly 80% of these customers are located in the United States, this work so far has also identified victims in seven additional countries,” Microsoft President Brad Smith said in a blog.
“This includes Canada and Mexico in North America; Belgium, Spain and the United Kingdom in Europe; and Israel and the UAE in the Middle East. It’s certain that the number and location of victims will keep growing.”
Smith added that “this is not espionage as usual” and “while governments have spied on each other for centuries, the recent attackers used a technique that has put at risk the technology supply chain for the broader economy.”
U.S. President-elect Joe Biden pledged Thursday to make cybersecurity a key area of focus for his administration.
“A good defense isn’t enough; We need to disrupt and deter our adversaries from undertaking significant cyberattacks in the first place,” Biden said in a statement issued by his transition team.
“We will do that by, among other things, imposing substantial costs on those responsible for such malicious attacks, including in coordination with our allies and partners. Our adversaries should know that, as President, I will not stand idly by in the face of cyber assaults on our nation.”
President Donald Trump, who has been silent about the hacking, threatened on Thursday to veto the National Defense Authorization Act, which includes money to help prevent such cyberattacks.
» Subscribe to CNBC TV: https://cnb.cx/SubscribeCNBCtelevision
» Subscribe to CNBC: https://cnb.cx/SubscribeCNBC
» Subscribe to CNBC Classic: https://cnb.cx/SubscribeCNBCclassic
Turn to CNBC TV for the latest stock market news and analysis. From market futures to live price updates CNBC is the leader in business news worldwide.
The News with Shepard Smith is CNBC’s daily news podcast providing deep, non-partisan coverage and perspective on the day’s most important stories. Available to listen by 8:30pm ET / 5:30pm PT daily beginning September 30: https://www.cnbc.com/2020/09/29/the-news-with-shepard-smith-podcast.html?__source=youtube%7Cshepsmith%7Cpodcast
Connect with CNBC News Online
Get the latest news: http://www.cnbc.com/
Follow CNBC on LinkedIn: https://cnb.cx/LinkedInCNBC
Follow CNBC News on Facebook: https://cnb.cx/LikeCNBC
Follow CNBC News on Twitter: https://cnb.cx/FollowCNBC
Follow CNBC News on Instagram: https://cnb.cx/InstagramCNBC
https://www.cnbc.com/select/best-credit-cards/
#CNBC
#CNBCTV
Видео Why the SolarWinds cyberattack isn't over канала CNBC Television
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Lightning Round: Solar energy stocks are tricky right now, says Jim Cramer
Lack of growth in cerealy made it a real drag for Kellogg, says Jim Cramer
Jim Cramer takes a closer look at stocks that could be impacted by weight-loss drugs
Jim Cramer looks to the week ahead for the markets
With this job number we could see the fabled soft landing, says Jim Cramer
Final Trades: UUP, EWW, EWZ, WRK
Chart Master: Buy gold for a bounce after recent dip
Mexico is the post-COVID winner, says Michelle Caruso-Cabrera
Former federal prosecutor discuses possible defense strategies for Sam Bankman-Fried #Shorts
The Valuation Reckoning: When AI Startup Darlings Hit Stratospheric Levels
Keep an eye on the yield curve, it's still important, says Quadratic's Nancy Davis
It's still too early for the Fed to say 'mission accomplished', says Apollo's Torsten Slok
Amazon launches Project Kuiper prototypes to low orbit as tech giant enters satellite internet race
Jailed Iranian activist Narges Mohammadi just won the 2023 Nobel Peace Prize
Jailed Iranian activist Narges Mohammadi just won the 2023 Nobel Peace Prize #Shorts
Apple's biggest risk is the next upgrade not catching on, says NYU's Aswath Damodaran
T. Rowe's Sebastien Page says there's three major macro risks to the economy
Three-Stock Lunch: Disney, Tesla and Exxon
Formula One gets upgraded by Citi
FTX’s Gary Wang tells court Alameda got ‘special privileges’ to exchange’s funds: CNBC Crypto World
UAW President Shawn Fain: Our goal has always been to win a record contract