Cisco is the latest victim of Russian cyber-attack using SolarWinds | Tech News

Cisco is the latest victim of Russian cyber-attack using SolarWinds

Some internal machines used by Cisco researchers were targeted by the SolarWinds attack. 

By:BLOOMBERG
| Updated on: Aug 21 2022, 13:31 IST
Cisco used a popular software internally from Texas-based SolarWinds that has been at the center of the attacks so far.
Cisco used a popular software internally from Texas-based SolarWinds that has been at the center of the attacks so far. (REUTERS)

Cisco was compromised as part of a suspected Russian campaign that has roiled the US government and private sector and left security experts across the country racing to assess the extent of the damage.

Some internal machines used by Cisco researchers were targeted, the networking equipment maker said. The company said its security team moved quickly to address the issue and that the “affected software” has been “mitigated.”

You may be interested in

MobilesTablets Laptops
Apple iPhone 15 Pro Max
  • Black Titanium
  • 8 GB RAM
  • 256 GB Storage
Google Pixel 8 Pro
  • Obsidian
  • 12 GB RAM
  • 128 GB Storage
Samsung Galaxy S23 Ultra 5G
  • Green
  • 12 GB RAM
  • 256 GB Storage
10% OFF
Apple iPhone 15 Plus
  • Black
  • 6 GB RAM
  • 128 GB Storage

“At this time, there is no known impact to Cisco offers or products,” the company said in a statement. “We continue to investigate all aspects of this evolving situation with the highest priority.”

Also read
Looking for a smartphone? To check mobile finder click here.

Cisco used a popular software internally from Texas-based SolarWinds that has been at the center of the attacks so far. Hackers inserted a malicious backdoor into SolarWinds's Orion software that they then used as a staging ground for later attacks. SolarWinds customers who accessed updates between March and June were infected with the backdoor -- as many as 18,000 customers, according to the company.

The number of Orion software users who were actually attacked by the hackers isn't known but almost certainly far less.

Also Read: Microsoft says it found malicious software in its systems

“While Cisco does not use SolarWinds Orion for its enterprise network management or monitoring, we have identified and mitigated affected software in a small number of lab environments and a limited number of employee endpoints,” according to the company's statement. Endpoints refer to employee devices such as computers.

Network management and monitoring are key parts of Cisco's machinery and software that directly look at data traffic moving through a network. Access to that flow could provide a malicious actor with multiple avenues to cause harm.

About two dozen computers in a Cisco lab were compromised, according to a person familiar with the incident.

Cisco is the world's biggest maker of networking equipment and provides hardware and software that are the backbone of the internet and central to corporate and government computer networks across the world.

A company spokesperson declined to comment beyond what Cisco said in a written statement.

The toll of victims compromised by a sophisticated suspected Russian cyber-attack has continued to rise since December 8 when the cybersecurity company FireEye Inc. announced it had been hacked via SolarWinds's software.

Cisco's breach comes a day after Microsoft said its systems were exposed to the malicious update.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 19 Dec, 09:37 IST
NEXT ARTICLE BEGINS