Russia’s Foreign Intelligence Service has been blamed for the SolarWinds cyber attack.
The UK and US have revealed for the first time that Russia’s Foreign Intelligence Service (SVR) was behind a series of cyber intrusions, including the SolarWinds compromise.
The National Cyber Security Centre, a part of GCHQ, assesses that it is highly likely the SVR was responsible for gaining unauthorised access to SolarWinds Orion software and subsequent targeting. You can read from the source here.
The US National Security Agency (NSA), Department of Homeland Security’s Cybersecurity Infrastructure Security Agency (CISA) and the FBI have published a technical advisory with mitigation advice. Read the guidance in full.
The NCSC has previously published guidance for organisations on this compromise:
Foreign Secretary Dominic Raab, said:
“We see what Russia is doing to undermine our democracies. The UK and US are calling out Russia’s malicious behaviour, to enable our international partners and businesses at home to better defend and prepare themselves against this kind of action. The UK will continue to work with allies to call out Russia’s malign behaviour where we see it.”
You can read the Foreign Secretary’s statement on this action in full here.