SolarWinds hackers gained access to thousands of DOJ email accounts
Fortunately, no classified information was accessed
As the fallout from the recent SolarWinds hack continues, it has now been confirmed that thousands of email accounts at the US Department of Justice (DOJ) have been compromised. The incident is another concerning example of a US Government agency being targeted as a result of the attack.
“After learning of the malicious activity, the [Office of the Chief Information Officer] eliminated the identified method by which the actor was accessing the O365 email environment,” a Department of Justice statement read. “At this point, the number of potentially accessed O365 mailboxes appears limited to around 3% and we have no indication that any classified systems were impacted.”
Given that the DOJ employs more than 115,000 people, 3% equates to just under 3,500 email accounts. It is not clear whether the compromised mailboxes belonged to specific individuals at the DOJ or if the attackers took a more scattergun approach.
- Here's our list of the best malware removal software on the market
- We've built a list of the best endpoint protection services out there
- Also, check out our list of the best disaster recovery solutions
Government failings
Last month, reports began emerging of a huge supply chain malware attack on software manufacturer SolarWinds. Around 18,000 customers were using the vulnerable version of the company’s Orion platform at the time of the attack, with private companies and government agencies affected.
In the days and weeks that have followed the initial discovery of the malware, further evidence has come to light on the sheer scale and sophistication of the attack. The hack, which investigators believe was primarily an intelligence gathering operation, has been attributed to the Russian state.
The admission by the DOJ that thousands of its mailboxes have been impacted is another blow for the US federal government. Previous reports revealed that both the US Energy Department and the National Nuclear Security Administration had also been affected.
- Check out our list of the best antivirus services around
Via BleepingComputer
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Barclay has been writing about technology for a decade, starting out as a freelancer with ITProPortal covering everything from London’s start-up scene to comparisons of the best cloud storage services. After that, he spent some time as the managing editor of an online outlet focusing on cloud computing, furthering his interest in virtualization, Big Data, and the Internet of Things.