'It could be catastrophic': Woman says natural supplement contained hidden painkiller drug
A Manitoba woman thought she found a miracle natural supplement, but said a hidden ingredient wreaked havoc on her health.
Microsoft said Monday the same Russia-backed hackers responsible for the 2020 SolarWinds breach continue to attack the global technology supply chain and have been relentlessly targeting cloud service companies and others since summer.
The group, which Microsoft calls Nobelium, has employed a new strategy to piggyback on the direct access that cloud service resellers have to their customers' IT systems, hoping to "more easily impersonate an organization's trusted technology partner to gain access to their downstream customers." Resellers act as intermediaries between giant cloud companies and their ultimate customers, managing and customizing accounts.
"Fortunately, we have discovered this campaign during its early stages, and we are sharing these developments to help cloud service resellers, technology providers, and their customers take timely steps to help ensure Nobelium is not more successful," Tom Burt, a Microsoft vice president, said in a blog post.
The Biden administration downplayed Microsoft's announcement. A U.S. government official briefed on the issue who insisted on anonymity to discuss the government's response noted that "the activities described were unsophisticated password spray and phishing, run-of-the mill operations for the purpose of surveillance that we already know are attempted every day by Russia and other foreign governments."
The Russian Embassy did not immediately reply to a request for comment.
U.S. and Russian ties have already been strained this year over a string of high-profile ransomware attacks against U.S. targets launched by Russia-based cyber gangs. U.S. President Joe Biden has warned to Russian President Vladimir Putin to get him to crack down on ransomware criminals, but several top administration cybersecurity officials have said recently that they have seen no evidence of that.
Supply chain attacks allow hackers to steal information from multiple targets by breaking into a single product they all use. The U.S. government has previously blamed Russia's SVR foreign intelligence agency for the SolarWinds hack, a supply-chain hack which went undetected for most of 2020, compromised several federal agencies and badly embarrassing Washington.
The hacking campaign is called SolarWinds after the U.S. software company whose product was used in that effort. The Biden administration in April placed new sanctions against six Russian companies that support the country's cyber efforts in response to the SolarWinds hack.
Microsoft has been observing Nobelium's latest campaign since May and has notified more than 140 companies targeted by the group, with as many as 14 believed to have been compromised. The attacks have been increasingly relentless since July, with Microsoft noting that it had informed 609 customers that they had been attacked 22,868 times by Nobelium, with a success rate in the low single digits. That's more attacks than Microsoft had flagged from all nation-state actors in the previous three years.
"Russia is trying to gain long-term, systematic access to a variety of points in the technology supply chain and establish a mechanism for surveilling -- now or in the future -- targets of interest to the Russian government," Burt said.
Microsoft did not name any of the hackers' targets in their latest campaign. But cybersecurity firm Mandiant said it had seen victims in both Europe and North America.
Mandiant Chief Technology Officer Charles Carmakal said the hackers' method of going after resellers make detection difficult.
"It shifts the initial intrusion away from the ultimate targets, which in some situations are organizations with more mature cyber defenses, to smaller technology partners with less mature cyber defenses," he said.
------
AP Business Writer Matt Ott in Silver Spring, Maryland, contributed to this report.
A Manitoba woman thought she found a miracle natural supplement, but said a hidden ingredient wreaked havoc on her health.
Hospital chaplain J.S. Park opens up about death, grief and hearing thousands of last words, and shares his advice for the living.
The World Health Organization is likely to issue a wider warning about contaminated Johnson and Johnson-made children's cough syrup found in Nigeria last week, it said in an email.
Police have released video footage of a dramatic takedown of a group of teens wanted in connection with an attempted carjacking in Markham earlier this month.
Canada called for 'all parties' to de-escalate rising tensions in the Mideast following an apparent Israeli drone attack against Iran overnight.
A woman who recently moved to Canada from India was searching for a job when she got caught in an online job scam and lost $15,000.
More money will land in the pockets of some Canadian families on Friday for the latest Canada Child Benefit installment.
The World Health Organization and around 500 experts have agreed for the first time on what it means for a disease to spread through the air, in a bid to avoid the confusion early in the COVID-19 pandemic that some scientists have said cost lives.
American millionaire Jonathan Lehrer, one of two men charged in the killings of a Canadian couple in Dominica, has been denied bail.
At 6'8" and 350 pounds, there is nothing typical about UBC offensive lineman Giovanni Manu, who was born in Tonga and went to high school in Pitt Meadows.
Kevin the cat has been reunited with his family after enduring a harrowing three-day ordeal while lost at Toronto Pearson International Airport earlier this week.
Molly Knight, a grade four student in Nova Scotia, noticed her school library did not have many books on female athletes, so she started her own book drive in hopes of changing that.
Almost 7,000 bars of pure gold were stolen from Pearson International Airport exactly one year ago during an elaborate heist, but so far only a tiny fraction of that stolen loot has been found.
When Les Robertson was walking home from the gym in North Vancouver's Lower Lonsdale neighbourhood three weeks ago, he did a double take. Standing near a burrow it had dug in a vacant lot near East 1st Street and St. Georges Avenue was a yellow-bellied marmot.
A moulting seal who was relocated after drawing daily crowds of onlookers in Greater Victoria has made a surprise return, after what officials described as an 'astonishing' six-day journey.
Just steps from Parliament Hill is a barber shop that for the last 100 years has catered to everyone from prime ministers to tourists.
A high score on a Foo Fighters pinball machine has Edmonton player Dave Formenti on a high.
A compound used to treat sour gas that's been linked to fertility issues in cattle has been found throughout groundwater in the Prairies, according to a new study.