It was clear from the start that a cyberattack by suspected Russian hackers aimed at several US government agencies was going to be bad. One clue: US National Security Adviser Robert O’Brien cut short a trip overseas to rush back to Washington to help manage the crisis.
On Thursday, the reality of just how sprawling — and potentially damaging — the breach might be came into sharper focus.
It started with a bulletin from the US Cybersecurity and Infrastructure Security Agency (CISA), warning that the hackers were sophisticated, patient and well-resourced, representing a “grave risk” to federal, state and local governments, as well as critical infrastructure and the private sector.
Bloomberg News reported that at least three state governments were hacked, which followed reports of other breaches: the city network in Austin, Texas, and the US nuclear weapons agency. Software giant Microsoft Corp also said its systems were exposed.
The US Department of Energy and its National Nuclear Security Administration, which maintains the country’s nuclear stockpile, said that the malware was isolated to business networks and did not affect national security functions.
Nonetheless, the effect of the revelations was confirmation that no single person or agency is certain of exactly what the hackers had infiltrated, let alone the full extent of what was taken.
US president-elect Joe Biden interrupted a series of high-profile appointment announcements to weigh in.
“I want to be clear: My administration will make cybersecurity a top priority at every level of government — and we will make dealing with this breach a top priority from the moment we take office,” Biden said.
So far, US President Donald Trump has not commented on the attack.
The hackers installed what is known as a backdoor in widely used software from Texas-based SolarWinds Corp, whose customers include myriad government agencies and Fortune 500 companies.
That malicious backdoor, which was installed by 18,000 SolarWinds customers, allowed the hackers access to their computer networks.
US authorities — and governments around the world — are only now beginning to uncover who was unlucky enough to receive the hackers’ full attention.
Microsoft said it detected the backdoor in SolarWinds’ software in its “environment” and had “isolated and removed” it.
The company said that none of its customer data nor its products were accessed or used to further attacks on others.
In a blog post, Microsoft said it had identified more than 40 customers that the hackers had “targeted more precisely and compromised,” including “security and other technology firms,” think tanks and government contractors, in addition to government agencies.
‘NO SECURITY RISK’: The Railway Bureau reassured the public that the technicians’ activities were limited to technical guidance and did not involve sensitive systems The Railway Bureau yesterday said it had invited eight Chinese technicians to assist with an airport MRT construction project. The bureau issued the confirmation after an Internet user said Chinese nationals had entered the construction zone of Taiwan Taoyuan International Airport’s Terminal 3 project. They asked why “individuals from an enemy state” were allowed access to such a major national infrastructure project, which raised serious concerns over Taiwan’s industrial safety, sensitive systems and information security. The bureau’s Northern Region Engineering Branch Office said subcontractor Taiwan Handle Industrial Co (台灣手把工業) of the Taoyuan airport MRT’s “Contract No. CU05 Project A14 Station Civil, MEP &
A US uncrewed surface vessel (USV) encountered multiple Chinese warships during an autonomous transit of the Taiwan Strait, US defense company Seasats said in a statement on Wednesday. Seasats announced that a Lightfish USV had completed the first autonomous transit of the Taiwan Strait. Over five days, the USV traversed the entire length of the Strait while constantly monitoring surface vessel traffic, the company said. The Lightfish encountered multiple Chinese warships, one of which was a Chinese People’s Liberation Army Navy (PLAN) Type 056 corvette, it said. The Chinese vessels were operating “well within Taiwan’s exclusive economic zone without transmitting their identity via the
GREATER REACH? Auto parts and wood products would face tariffs of up to 15%, matching those targeting the EU, Japan and South Korea, Vice Premier said The US has announced that preferential tariff treatment for Taiwan’s non-semiconductor Section 232 goods would take effect retroactively from May 1, the Executive Yuan said yesterday. The US government yesterday posted a notice on the Federal Register’s public inspection Web site previewing tariff concessions for Taiwan under a memorandum of understanding (MOU) on Taiwan-US investment after two months of negotiations. The MOU signed on Jan. 15 stipulated three major preferential tariff arrangements: a 15 percent “reciprocal” tariff rate for Taiwan without stacking most-favored nation (MFN) rates; preferential Section 232 treatment for semiconductors and related products; and preferential Section 232 treatment for non-semiconductor
TIT-FOR-TAT: The US allegedly revoked the visa of a Chinese national working at Xinhua News Agency in the US in response to Beijing’s expulsion of Vivian Wang The Presidential Office yesterday condemned China for expelling a New York Times correspondent from Beijing following the newspaper’s interview with President William Lai (賴清德), saying the move highlighted Beijing’s suppression of press freedom and its threat to international news media. Taiwan has noted a series of recent incidents in which Beijing used similar tactics to “threaten and pressure international media outlets and journalists,” Presidential Office spokeswoman Karen Kuo (郭雅慧) said in a statement. “This concerns not only press freedom and freedom of expression, but also the safety of journalists, and Taiwan and relevant partners are paying close attention to the situation,” she
RSS