(RoyalPatriot.com )- Austin, Texas-based software company SolarWinds Corp. – the company at the center of a massive cyberattack in 2020 — released a statement over the weekend saying that a group of unknown hackers exploited a previously-unknown flaw in two of its programs in order to go after “a limited, targeted set of customers.” SolarWinds did not identify the hackers involved.
But the incident comes just days after the Russian-based REvil hackers attacked the IT service provider Kaseya paralyzing thousands of its customers across the globe.
According to SolarWinds, the flaw was “completely unrelated” to the 2020 “Sunburst” cyberattack of government networks by alleged Russian spies. That espionage operation exploited SolarWinds as a springboard to penetrate networks. The attack exposed potentially sensitive data at a number of federal agencies including the Department of the Treasury, as well as major companies.
SolarWinds said that it is “unaware” of the identities of the “potentially affected customers” ensnared in this latest intrusion.
In their weekend statement, SolarWinds credited researchers at Microsoft for discovering the software flaw related to Serv-U Managed File Transfer Server and Serv-U Secured FTP. A hotfix to resolve the vulnerability was developed. And, to the best of their knowledge, no other SolarWinds products have been affected by the vulnerability.
The Kaseya attack which occurred just before the July 4th holiday weekend was a ransomware attack that not only impacted over two hundred US businesses, but small and large size businesses all over the world – including over 800 grocery stores in Sweden.
The Russian ransomware gang REvil, which conducted the Kaseya attack, has demanded $70 million in cryptocurrency to unlock all the data it stole.
Last Friday, before SolarWinds announced its recent hack, President Biden spoke with Russian President Vladimir Putin where, according to the President, he made it “very clear” that the US expects Russia to act on whatever evidence the US provides whether the Russian hackers are state sponsored or not.
In their Geneva Summit in June, President Biden told reporters that he had given Putin a list of sixteen US sectors that are off limits to cyberattacks. No word on whether SolarWinds, Kaseya, or companies like them were among those off-limits sectors.