A hacking campaign that of which a US tech firm was used a springboard to attack various US government agencies is “the largest and most sophisticated attack the world has ever seen,” according to Microsoft Corp President Brad Smith said.
The operation, which was uncovered last December and was seen by the US government as perpatrated by Russia, breached software made by SolarWinds Corp, which give hackers access to thousands of companies and government offices that used the tech company’s its products.
The hackers got access to emails at the US Treasury, Justice and Commerce departments and other agencies, with cybersecurity experts saying the it could take months to identify the compromised systems and expel the hackers.
“I think from a software engineering perspective, it’s probably fair to say that this is the largest and most sophisticated attack the world has ever seen,” Smith said in a television interview on Sunday.
The breach could have compromised up to 18,000 SolarWinds customers that used the company’s Orion network monitoring software, and likely relied on hundreds of engineers.
“When we analyzed everything that we saw at Microsoft, we asked ourselves how many engineers have probably worked on these attacks. And the answer we came to was, well, certainly more than 1,000,” Smith said.
US intelligence services said last month that Russia was “likely” behind the SolarWinds breach, which they said appeared to be aimed at collecting intelligence rather than destructive acts.
Russia has denied responsibility. SOVEREIGNPH