The company SolarWinds has hired the former chief cybersecurity officer government Chris Krebs to help him restore his systems and learn from the incident.
Hackers infiltrated the SolarWinds network before inserting malware into its Orion software updates. this attack, hackers gained access to the networks of approximately 18,000 SolarWinds customers around the world, including the US government.
Targeted agencies included the State Department, the Department of Homeland Security, National Institutes of Health, the Pentagon, the Treasury Department, the Commerce Department, the Department of Energy, as well as the national nuclear security administration.
The cybersecurity firm FireEye was also targeted in this spy campaign, as attackers sought information on government clients.
The US government has officially accused Russia of being at the origin of attack, the full consequences of which may not yet be known.
SolarWinds brought in Chris Krebs, who occupiedthe post of Director of the Cybersecurity and Infrastructure Security Agency (CISA) until November of last year. Krebs was fired by Trump via Twitter for denouncing the questionable claims of the outgoing president on electoral fraud.
Krebs was hired by SolarWinds as an independent consultant: the latter started a new company with Alex Stamos, professor at Stanford University and former Facebook security manager. The tandem will work with SolarWinds to repair damage caused by the attack and improve business security.
"Based on what we learned from this attack, we are also reflecting on our own security practices and looking for opportunities to improve our posture and policies," said a spokesperson for SolarWinds to HFrance by e-mail.
"We enlisted the expertise of Chris Krebs and Alex Stamos to assist us with this review and provide top-notch advice on our journey to grow into an industry-leading secure software development company.
The hiring of Krebs and Stamos comes as new SolarWinds chairman and CEO Sudhakar Ramakrishna, who took over as head of the company this week, laid out plans to learn from the cyberattack.
"We have hired several leading cybersecurity experts to help us on this journey and I am committed to being transparent with our customers, government partners and the general public. short and long term regarding our security enhancements to ensure that we maintain what is most important to us - your trust, ”he wrote in un blog article.