The SolarWinds Cyber Attack seems to be like a never-ending saga as daily a new revelation is being made by US Department of Homeland Security. Now, the latest find is that the hacking group suspected to be from Russia is reported to be only interested in Microsoft Corporation products and services.
Brandon Wales, the director of DHS Cybersecurity and Infrastructure Security Agency, has confirmed the news and stated that the hacking operation was massive and could have been launched with a long-term motive to compromise infrastructure related to communication.
Mr. Wales stated the hackers started the campaign by targeting Microsoft Office 365 products and then seeped their modus operandi into the cloud operations of the tech giant and then targeted other company’s software.
Wales disclosure has given the incident a new dimension as all these days the FBI was seen constantly telling that the attack resulted from malware insertion into a government network via a software backdoor that perpetuated to other networks of public and private companies.
Also, it also gives a perfect answer to the previously unanswered questions that were lingering in the minds of most security specialists on how 30% of private companies that were not using the SolarWinds software were hacked.
Sudhakar Ramakrishna, the CEO of SolarWinds, admitted that the hackers entered their corporate network through Office 365 software. However, he added that there needs to be a lot of investigation to be done on whether the hack took place because of a vulnerability in Office 365 software.
Meanwhile, news is out that the hackers accessed over 3% of the Office 365 mailboxes belonging to the Department of Justice email system.