Microsoft (MSFT) - Get Report on Friday sounded the alarm over the SolarWinds (SWI) - Get Report cyber attack imbroglio, saying it has found malicious software in its own systems related to the massive cyber attack that was disclosed by U.S. officials earlier this week.
The Richmond, Wash.-based software giant is a user of Orion, the widely deployed networking management software from SolarWinds that was used in the suspected Russian attacks on several U.S. government agencies.
“Like other SolarWinds customers, we have been actively looking for indicators of this actor and can confirm that we detected malicious SolarWinds binaries in our environment, which we isolated and removed,” Microsoft said in a statement.
“We have not found evidence of access to production services or customer data. Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others,” the company said.
The revelation comes following a new alert by the Department of Homeland Security's cyber arm Thursday revealing that Russian hackers suspected of a massive, ongoing intrusion campaign into government agencies, private companies and critical infrastructure entities used a variety of unidentified tactics - and not just a single compromised software program.
For its part, Microsoft has identified more than 40 of its customers around the world that had problematic versions of the third-party IT management program, and that were specifically targeted by the suspected Russian hacking campaign disclosed this week.
2020’s Most Popular Videos From TheStreet and Jim Cramer:
- Tesla's Biggest Milestones Leading Up to the S&P
- Before You Binged: A History of Netflix
- Ask Bob: Should I Stop Contributing To My 401(k) Until The Pandemic Ends?
- What Is a Put Option?
- Do You Have a Good Credit Score?
- How to Know When a Stock Bottoms Out on Bad News
- Badgley Mischka on Leadership Lessons Learned From the Pandemic