US officials say Russians hackers are launching potential SolarWinds-style operations

US officials say Russians hackers are launching potential SolarWinds-style operations
US officials say Russians hackers are launching potential SolarWinds-style operations

Hello and welcome to the details of US officials say Russians hackers are launching potential SolarWinds-style operations and now with the details

Nevin Al Sukari - Sana'a - The US National Security Agency, the FBI and cyber watchdog agency CISA accused the hackers of trying to hijack the servers in a bid to access software developers’ source code. ¬—― iStock pic

WASHINGTON, Dec 14 — US officials say that Russian hackers are targeting servers hosting outdated versions of software made by the Czech tech company JetBrains for potential SolarWinds-style espionage operations.

In a statement released yesterday, the US National Security Agency, the FBI and cyber watchdog agency CISA accused the hackers, sometimes known as Cozy Bear or APT29, of trying to hijack the servers in a bid to access software developers’ source code, something that could potentially allow them to tamper with its compilation or deployment.

A similar technique was used to doctor software made by the US software firm SolarWinds SWI.N, the statement noted. That cyberespionage campaign led to a wave of serious breaches across the government that were discovered in 2019.

Russian officials did not immediately return a message seeking comment. Moscow has previously denied hacking allegations.

Advertisement

In a statement, Prague-based JetBrains said it had fixed the vulnerability affecting its TeamCity collaborative software building tool in September and had been contacting its customers since in the hope of “motivating them to update.”

It said fewer than 2 per cent of TeamCity instances still used unpatched software.

Programmes like TeamCity — which help manage other companies’ software building process — can potentially make for ideal springboards for hackers looking to break into many different targets at once.

Advertisement

Securing that kind of sweeping access has been a key priority for APT29, which is alleged by Western officials and private cybersecurity companies to act on behalf of Russia’s foreign intelligence agency, the SVR, and is generally considered one of the country’s elite hacking groups.

The US statement said the US and its allies had identified “a few dozen compromised companies” in the United States, Europe, Asia, and Australia. It said the companies had little in common except that they had outdated and vulnerable versions of JetBrains exposed to the internet, suggesting the hacks were “opportunistic in nature and not necessarily a targeted attack.”

The statement was co-signed by Britain’s National Cyber Security Centre as well as Poland’s Military Counterintelligence Service and its Computer Emergency Response Team. — Reuters

These were the details of the news US officials say Russians hackers are launching potential SolarWinds-style operations for this day. We hope that we have succeeded by giving you the full details and information. To follow all our news, you can subscribe to the alerts system or to one of our different systems to provide you with all that is new.

It is also worth noting that the original news has been published and is available at Malay Mail and the editorial team at AlKhaleej Today has confirmed it and it has been modified, and it may have been completely transferred or quoted from it and you can read and follow this news from its main source.

PREV Intuitive Machines: Odysseus Moon lander 'tipped over on touchdown'
NEXT FBI director warns that Chinese hackers are preparing to ‘wreak havoc’ on US critical infrastructure

Author Information

I am Joshua Kelly and I focus on breaking news stories and ensuring we (“Al-KhaleejToday.NET”) offer timely reporting on some of the most recent stories released through market wires about “Services” sector. I have formerly spent over 3 years as a trader in U.S. Stock Market and is now semi-stepped down. I work on a full time basis for Al-KhaleejToday.NET specializing in quicker moving active shares with a short term view on investment opportunities and trends. Address: 838 Emily Drive Hampton, SC 29924, USA Phone: (+1) 803-887-5567 Email: [email protected]