A task force is investigating the extent of the damage from the breach, assessing potential responses and trying to confirm the identity of whoever was behind it
Topics
Hacking | Cyberattacks | cybersecurity
AP | Washington
Last Updated at February 18, 2021 07:04 ISTUS authorities are still working to unravel the full scope of the likely Russian hack that gave the sophisticated actor behind the breach complete access to files and email from at least nine government agencies and about 100 private companies, the top White House cybersecurity official said Thursday.
Anne Neuberger, the newly appointed deputy national security adviser for cyber and emerging technology, also warned that the danger has not passed because the hackers breached networks of technology companies whose products could be used to launch additional intrusions.
A task force is investigating the extent of the damage from the breach, assessing potential responses and trying to confirm the identity of whoever was behind it a process Neuberger warned will take more time.
This is a sophisticated actor who did their best to hide their tracks, she told reporters at the White House. "We believe it took them months to plan and execute this compromise. It will take us some time to uncover this layer by layer.
US authorities have said the breach, disclosed in December, appeared to be the work of Russian hackers. Neuberger, a former senior official at the National Security Agency who was appointed by President Joe Biden this month, went no further.
An advanced, persistent threat actor likely of Russian origin was responsible," she said, without providing any further details and sounding a cryptic note on potential responses.
This isn't the only case of malicious cyber activity of likely Russian origin, either for us or for our allies and partners, Neuberger added. So, as we contemplate future response options, we are considering holistically what those activities were.
The Russian government has denied involvement.
Private security company FireEye was first to identify the breach, revealing that hackers hijacked widely used network software from SolarWinds Inc. to install malicious software through a what appeared to be a routine security update.
Intelligence agencies did not detect the breach because they largely have "no visibility into private-sector networks," and it was launched within the U.S., Neuberger said. The Biden administration supports changes to culture and authorities that prevented the hack from being detected on the federal civilian systems, she added.
The hack, Neuberger said, highlights the need to modernize the nation's IT infrastructure and its cyber defenses, issues that will be addressed in an upcoming executive order from Biden aimed at addressing security and technology gaps highlighted by the breach.
Several agencies have acknowledged that they were breached, including the Treasury Department and Justice Department, but the full list has not been publicly released. Once inside, the hackers had full access to the victims' data.
The techniques that were used lead us to believe that any files or emails on a compromised network were likely to be compromised," Neuberger said.
Some members of Congress have criticized the response based on what they have been told so far, all in private. The briefings we have received convey a disjointed and disorganized response to confronting the breach, Sen. Mark Warner, a Democrat from Virginia, and Sen. Marco Rubio, Republican from Florida, said in a recent letter to the White House.
Neuberger said she intended to return to the Capitol to brief lawmakers in the coming days.
(Only the headline and picture of this report may have been reworked by the Business Standard staff; the rest of the content is auto-generated from a syndicated feed.)
Dear Reader,
Business Standard has always strived hard to provide up-to-date information and commentary on developments that are of interest to you and have wider political and economic implications for the country and the world. Your encouragement and constant feedback on how to improve our offering have only made our resolve and commitment to these ideals stronger. Even during these difficult times arising out of Covid-19, we continue to remain committed to keeping you informed and updated with credible news, authoritative views and incisive commentary on topical issues of relevance.
We, however, have a request.
As we battle the economic impact of the pandemic, we need your support even more, so that we can continue to offer you more quality content. Our subscription model has seen an encouraging response from many of you, who have subscribed to our online content. More subscription to our online content can only help us achieve the goals of offering you even better and more relevant content. We believe in free, fair and credible journalism. Your support through more subscriptions can help us practise the journalism to which we are committed.
Support quality journalism and subscribe to Business Standard.
Digital Editor
First Published: Thu, February 18 2021. 06:57 IST
February 18, 2021 at 08:27AM
https://ift.tt/3jWD83b
US authorities still unravelling sophisticated hack of nine govt agencies - Business Standard
https://ift.tt/2WinW4G
Bagikan Berita Ini
0 Response to "US authorities still unravelling sophisticated hack of nine govt agencies - Business Standard"
Post a Comment