Posted on Leave a comment

Solarwinds Hackers now Targeting Government and Non-government Organizations with “Native Zone ” Backdoor.

Flash news!! Solarwinds Hackers now Targeting Government and Non-government Organization with the “Native Zone” Backdoor.

Microsoft has observed that various ranges of Cyber attack from the infamous cyber threat actor named “Nobelium” via the sophisticated email based spear-phishing attack.

Nobelium, the threat actor who was responsible for Solarwinds attack earlier now has started targeting various think-tanks like government organizations, non-governments across the 24 countries.

Fig 1.1 Sourced from Microsoft site.

Microsoft stated that this attack is impressively notable for three reason :

First, when coupled with the attack on SolarWinds, it’s clear that part of Nobelium’s playbook is to gain access to trusted technology providers and infect their customers. By piggybacking on software updates and now mass email providers, Nobelium increases the chances of collateral damage in espionage operations and undermines trust in the technology ecosystem. 

Second, perhaps unsurprisingly, Nobelium’s activities and that of similar actors tend to track with issues of concern to the country from which they are operating. This time Nobelium targeted many humanitarian and human rights organizations. At the height of the Covid-19 pandemic, Russian actor Strontium targeted healthcare organizations involved in vaccines. In 2019, Strontium targeted sporting and anti-doping organizations. And we’ve previously disclosed activity by Strontium and other actors targeting major elections in the U.S. and elsewhere. This is yet another example of how cyberattacks have become the tool of choice for a growing number of nation-states to accomplish a wide variety of political objectives, with the focus of these attacks by Nobelium on human rights and humanitarian organizations. “

Third, nation-state cyberattacks aren’t slowing. We need clear rules governing nation-state conduct in cyberspace and clear expectations of the consequences for violation of those rules. We must continue to rally around progress made by the Paris Call for Trust and Security in Cyberspace, and more widely adopt the recommendations of the Cybersecurity Tech Accord, and the CyberPeace Institute. But, we need to do more. Microsoft will continue to work with willing governments and the private sector to advance the cause of digital peace. “

Microsoft has released the in-depth analysis of the attack with the evolved delivery techniques.

–-For more Cyber security news in crisp content . Please follow our site.

Leave a Reply