Lagos, Nigeria

Malwarebytes attacked by same threat actor as SolarWinds

Malwarebytes recently shared that it was attacked by the same group that was behind the SolarWinds attack that occurred last year. Malwarebytes does not use SolarWinds but explains that it was attacked by the threat actor behind the famous attack. The attack on Malwarebytes abuses applications with privileged access to Microsoft Office 365 environments.

Malwarebytes explains that the attacker “only gained access to a limited subset of internal company emails” and that it “found no evidence of unauthorized access or compromise in any of [its] internal on-premises and production environments.”

The Microsoft Security Response Center notified information about the attack on December 15. Malwarebytes was informed of suspicious activity that was consistent with methods used in the SolarWinds attack.

VPN Deals: Lifetime license for $16, monthly plans at $1 & more

After being informed of the attack, Malwarebytes activated its incident response group and work with Microsoft’s Detection and Response Team to investigate. According to its investigation, the attack leveraged a dormant email protection product within the Malwarebytes Office 365 tenant.

“Our software remains safe to use,” says Malwarebytes co-founder and CEO Marcin Kleczynski in the post detailing the attack. Kleczynski explains that Malwarebytes looked at its source code, build and delivery processes, and reverse engineered its own software to make sure that it’s still safe to use. The company’s systems “showed no evidence of unauthorized access or compromise in any on-premises and production environments,” according to Kleczynski.

The threat actors behind the SolarWinds attacks have gone after several large tech companies, including Microsoft. The U.S. government accuse the Russian government of orchestrating the SolarWinds attack (via ZDNet).

This post was written by Sean Endicott and was first posted to WindowsCentral

Do you find this article helpful? Your Friend might too. So, please Share it with them using the Share button above.
Will you like to get notified when I post new updates? Then Follow me on any of my social media handles: Google News, Telegram, WhatsApp, Twitter, Facebook, Pinterest.
You can also drop your email address below if you wish to be notified by mail.

[newsletter_form type="minimal" lists="undefined" button_color="undefined"]

Tags: ,