Posted on Dec 24, 2020
The US Cybersecurity and Infrastructure Security Agency (CISA) said on Wednesday that the cyber-breach of government agencies was part of a campaign that affected around 50 companies, and affected state and local governments.
The hacking campaign, which used US tech company SolarWinds as a springboard to penetrate federal government networks, was “impacting enterprise networks across federal, state, and local governments, as well as critical infrastructure entities and other private sector organisations,” CISA said in a statement posted to its website.
CISA said last week that government agencies, critical infrastructure entities, and private groups were among those affected, but did not specifically mention state or local bodies.
So far only a handful of federal government agencies have officially confirmed having been affected, including the US Treasury Department, the Commerce Department, and the Department of Energy.
CISA did not identify the state or local agencies affected and did not immediately return an email seeking additional detail on the notice.
Reuters has previously reported that Pima County, Arizona was among the victims of the wave of intrusions.
Prima county's chief information officer previously told Reuters his team had taken its SolarWinds software offline immediately after the hack became public and that investigators had not found any evidence of a further compromise.
Senior US officials have claimed that Russia is to blame for the hacking spree, a charge the Kremlin denies.
Follow EU Today on Social media: