Latest Russian cyberattack targeting hundreds of US networks, says Microsoft

[WASHINGTON, D.C.] The Russian-based agency behind last year's massive SolarWinds cyberattack has targeted hundreds more companies and organisations in its latest wave of attacks on US-based computer systems, Microsoft said in a blog post.

In the post dated Oct 24, the tech giant said Nobelium's latest wave targeted "resellers and other technology service providers" of cloud services. Those attacks were part of a broader campaign over the summer, Microsoft said, adding it had notified 609 customers between Jul 1 and Oct 19 that they had been attacked.

Just a small percentage of the latest attempts were successful, Microsoft told the The New York Times, which first reported the breach, but it gave no further details.

US cybersecurity officials could not be immediately reached to confirm the report.

US officials confirmed to the Times that the operation was underway, with one unnamed senior administration official calling it "unsophisticated, run-of-the mill operations that could have been prevented if the cloud service providers had implemented baseline cybersecurity practices". "This recent activity is another indicator that Russia is trying to gain long-term, systematic access to a variety of points in the technology supply chain and establish a mechanism for surveilling - now or in the future - targets of interest to the Russian government," Microsoft wrote.

REUTERS