As the fallout from the recent SolarWinds (opens in new tab) hack continues, it has now been confirmed that thousands of email accounts at the US Department of Justice (DOJ) have been compromised. The incident is another concerning example of a US Government agency being targeted as a result of the attack.
“After learning of the malicious activity, the [Office of the Chief Information Officer] eliminated the identified method by which the actor was accessing the O365 email environment,” a Department of Justice statement read (opens in new tab). “At this point, the number of potentially accessed O365 mailboxes appears limited to around 3% and we have no indication that any classified systems were impacted.”
Given that the DOJ employs more than 115,000 people, 3% equates to just under 3,500 email accounts. It is not clear whether the compromised mailboxes belonged to specific individuals at the DOJ or if the attackers took a more scattergun approach.
- Here's our list of the best malware removal (opens in new tab) software on the market
- We've built a list of the best endpoint protection (opens in new tab) services out there
- Also, check out our list of the best disaster recovery solutions (opens in new tab)
Last month, reports began emerging of a huge supply chain malware attack on software manufacturer SolarWinds. Around 18,000 customers (opens in new tab) were using the vulnerable version of the company’s Orion platform at the time of the attack, with private companies and government agencies affected.
In the days and weeks that have followed the initial discovery of the malware, further evidence has come to light on the sheer scale and sophistication of the attack. The hack, which investigators believe was primarily an intelligence gathering operation, has been attributed to the Russian state.
The admission by the DOJ that thousands of its mailboxes have been impacted is another blow for the US federal government. Previous reports revealed that both the US Energy Department and the National Nuclear Security Administration had also been affected.
- Check out our list of the best antivirus (opens in new tab) services around
Via BleepingComputer (opens in new tab)