Tim Burt, a spokesman for the company, noted that attacks by attackers from the Nobelium group, which may be behind the hacking of SolarWinds, were also targeted at research, consulting, and non-profit organizations.
Some US organizations and government agencies were attacked this week by hackers from the Nobelium group, which may be behind the hacking of the US Company SolarWinds last year. This opinion was expressed in a blog post by Microsoft representative Tim Burt.
“This week, we have seen cyberattacks by Nobelium attackers that targeted government agencies, as well as research, consulting, and non-profit organizations. This wave of attacks targeted 3,000 email accounts in more than 150 countries, “he wrote, adding that” Nobelium, originating in Russia, is the same entity behind the attacks on SolarWinds customers in 2020.” It is noted that the activities of at least a quarter of the attacked organizations are related to international development, humanitarian assistance, and work in the field of human rights.
According to Burt, a group of hackers began their attacks this week by gaining access to the marketing system of the US Agency for International Development (USAID), after which cybercriminals were able to send emails to various addresses with phishing links when clicking on which malicious software was downloaded to users ‘ computers. This opened up a wide range of possibilities for hackers – from stealing data to infecting other computers on the network. As the representative of Microsoft notes, many of these attacks were automatically blocked by the company’s software, now it notifies all users who were attacked about the incident. At the same time, the company has no reason to believe that hackers could take advantage of any vulnerability of Microsoft programs.