{"id":41505,"date":"2021-04-27T18:10:22","date_gmt":"2021-04-27T15:10:22","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=41505"},"modified":"2025-08-30T19:03:14","modified_gmt":"2025-08-30T16:03:14","slug":"fsb-links-solarwinds-attack-to-dark-web-leak","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/fsb-links-solarwinds-attack-to-dark-web-leak\/","title":{"rendered":"FSB links SolarWinds attack to dark-web leak"},"content":{"rendered":"<p>The cyberattack on U.S. government systems via compromised SolarWinds software became possible due to neglecting vulnerabilities. This was stated by Nikolai Murashov, deputy director of the National Coordination Center for Computer Incidents (NCCCI), created by order of the FSB leadership.<\/p>\n<p>According to him, the attackers could have gained access to the company&#8217;s software as early as 2017. Then SolarWinds employee Ian Thornton-Trump warned of cybersecurity shortcomings, but he was not heard, Murashov asserts.<\/p>\n<blockquote>\n<p>\u201cEven then, the credentials to access SolarWinds\u2019 remote-management software were available on the dark web.\u201d<\/p>\n<\/blockquote>\n<p>The NCCCI deputy director says SolarWinds had a primitive password for accessing the update server.<\/p>\n<blockquote>\n<p>\u201cThe recommendation to disable antivirus software when installing updates for its software also looks strange,\u201d he added.<\/p>\n<\/blockquote>\n<p>Earlier in 2020, a major cyberattack on U.S. government agencies through SolarWinds software affected the State Department, the Department of the Treasury, the Department of Commerce and the Department of Energy, and, to some extent, the Pentagon.<\/p>\n<blockquote class=\"wp-embedded-content\" data-secret=\"OKcqrxM0br\">\n<p><a href=\"https:\/\/u1f987.com\/en\/news\/how-solarwinds-was-hacked-the-united-states-biggest-cyberattack-and-the-shadow-of-russian-hackers\">How SolarWinds Was Attacked: The Largest Cyberattack on the U.S. and the Silhouette of Russian Hackers<\/a><\/p>\n<\/blockquote>\n<p><iframe loading=\"lazy\" class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; visibility: hidden;\" title=\"\u201c\u041a\u0430\u043a \u0430\u0442\u0430\u043a\u043e\u0432\u0430\u043b\u0438 SolarWinds: \u043a\u0440\u0443\u043f\u043d\u0435\u0439\u0448\u0430\u044f \u043a\u0438\u0431\u0435\u0440\u0430\u0442\u0430\u043a\u0430 \u043d\u0430 \u0421\u0428\u0410 \u0438 \u0441\u0438\u043b\u0443\u044d\u0442 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u0445\u0430\u043a\u0435\u0440\u043e\u0432\u201d \u2014 ForkLog\" src=\"https:\/\/u1f987.com\/exclusive\/kak-atakovali-solarwinds-krupnejshaya-kiberataka-na-ssha-i-siluet-rossijskih-hakerov\/embed#?secret=hfLAS27sVX#?secret=OKcqrxM0br\" data-secret=\"OKcqrxM0br\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p>In mid-April, in response to the cyberattack, the U.S. authorities <a href=\"https:\/\/u1f987.com\/en\/news\/troll-factory-linked-cryptocurrency-addresses-hit-by-u-s-sanctions\">added a number of cryptocurrency addresses<\/a> to the sanctions list, linked to individuals and organizations that allegedly helped Russian intelligence services meddle in the U.S. elections and spread disinformation.<\/p>\n<p>Subscribe to ForkLog news on Telegram: <a href=\"https:\/\/t.me\/forklogfeed\" target=\"_blank\" rel=\"nofollow noopener\">ForkLog Feed<\/a> \u2014 full news feed, <a href=\"https:\/\/telegram.me\/forklog\" target=\"_blank\" rel=\"nofollow noopener\">ForkLog<\/a> \u2014 the most important news, infographics and opinions.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The cyberattack on U.S. government systems via compromised SolarWinds software became possible due to neglecting vulnerabilities, according to the FSB&#8217;s IT structure.<\/p>\n","protected":false},"author":1,"featured_media":41506,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1154,1111,27,26],"class_list":["post-41505","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-crimes","tag-cybersecurity","tag-russia","tag-usa"],"aioseo_notices":[],"amp_enabled":true,"views":"25","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/41505","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=41505"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/41505\/revisions"}],"predecessor-version":[{"id":41507,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/41505\/revisions\/41507"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/41506"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=41505"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=41505"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=41505"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}