CISA also said that the incident involved "serious risk to the security of federal networks”And urged all federal services check their networks and disconnect or deactivate SolarWinds Orion products immediately.
SolarWinds is an IT company based in Austin, Texas and offers services to government agencies, the military and intelligence services. Η company recently stated that it was the victim of a supply-chain attack where "could possibly allow an attacker to breach the server on which the Orion products are running".
The company has not linked the attack to any specific one hacking club. Her only statement was that “we have been informed that the nature of this attack indicates that it may have been carried out by a state, but SolarWinds has not verified the identity of the attacker".
The U.S. government has not said publicly who may be behind the attack, but Reuters stated a few days ago that: “three people who know about the research said that the Russia is probably responsible for attack".
On December 18, the Mike Pompeo also supported this view, blaming Russia for the attack.
Discussing the incident in cyberspace during interview with Mark Levin, Pompeo said: “It was a very important effort and I think we can now clearly say that the Russians took part in this activity.".
"Russia is not involved in such attacks, nor in this one. We declare it officiallyThe Kremlin spokesman said on Monday that Dmitry Peskov.
He added: "The allegations of Russian involvement are completely unfounded. "It is more likely to be a continuation of the blind Russophobia they resort to in any such event."
Source: Infosecurity Magazine