ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

SEC Sues IT Firm SolarWinds Over One of the Worst Cyber Espionage Hacks in US History; Here's Why

The cyberattack was allegedly carried out by a group of Russian hackers called "NOBELIUM".
PUBLISHED NOV 27, 2023
Image source: Getty Images | Photo by Chip Somodevilla
Image source: Getty Images | Photo by Chip Somodevilla

US regulators have sued IT firm SolarWinds, which was targeted by a Russian-backed hacking group in a cyberespionage campaign, for fraud and failure to disclose alleged security deficiencies. The stunning hack was one of the largest cyberattacks in the US history, which compromised the data of several companies and government agencies. The suit also named the company’s top security executive while seeking his removal, unspecified civil penalties, and reimbursement of “ill-gotten gains”.



 

SolarWinds is a major IT/software company based in Austin, Texas. It provides system management tools for network and infrastructure monitoring, along with technical services to hundreds of thousands of organizations around the world. One of the company's products is an IT performance monitoring system called Orion which was the primary target of the hack.



 

As an IT monitoring system, SolarWinds Orion had privileged access to the IT systems of several companies and government agencies. Thus its wide deployment made it a lucrative and attractive target. In the attack, the hackers used a method called a ‘supply chain attack’ to insert malicious code into the Orion system. In this type of attack, a third party with access to various organizations' systems is targeted by focusing on weaker links in the organization's supply chain.

In this case, the SolarWinds Orion platform created a backdoor for hackers who impersonated users and accounts of victim organizations. The malware can also allow access to system files without detection, even by an antivirus software. In the hack, the attackers gained access to the networks, systems, and data of thousands of SolarWinds Orion customers.

Photo illustration, of a hacker with an Anonymous mask on his face | Getty Images | Photo by Chesnot
Getty Images | Photo by Chesnot

In this hack, Microsoft has suspected the hackers to be from the group known as NOBELIUM. Microsoft refers to the group as an advanced and persistent adversary because of its tenacious attacks and ever-evolving nature.

Representative image of a protestor wearing a mask of 'Anonymous' | Getty Images | Photo by Denis Doyle
Representative image of a protestor wearing a mask of 'Anonymous' | Getty Images | Photo by Denis Doyle

In the attack, the data, networks, and systems of over 30,000 public and private organizations were compromised, as per Fortune. The victims included state and federal agencies including, the Justice and Homeland Security departments. Apart from SolarWinds clients, the hack exposed the inner workings of Orion users, and the hackers could potentially gain access to the data and networks of their customers and partners as well.

In the 68-page complaint filed in New York federal court, the SEC has accused SolarWinds and its then vice president of security, Tim Brown, of defrauding their investors and customers. The SEC has accused them of making “misstatements, omissions and schemes” that concealed their “poor cybersecurity practices and its heightened and increasing cybersecurity risks," as per the official release

Gurbir S. Grewal, the SEC’s enforcement division director, said in a statement that SolarWinds and Brown ignored “repeated red flags” for years and deprived investors of accurate material information.

 Gurbir Grewal, Director of Enforcement for the Securities and Exchange Commission, speaks during a press conference | Getty Images | Photo by Michael M. Santiago
Gurbir Grewal, Director of Enforcement for the Securities and Exchange Commission, speaks during a press conference | Getty Images | Photo by Michael M. Santiago

The SEC also alleged that an internal SolarWinds presentation shared in 2020 had warned about the company’s network being “not very secure,” and vulnerable to hacking that could lead to “major reputation and financial loss,” the release said.  The SEC also alleged that many employees including Brown had made multiple communications questioning the company’s ability to protect itself from cyberattacks.

Meanwhile, SolarWinds has called the SEC charges unfounded and said it is “deeply concerned this action will put our national security at risk,” a Fortune report said.

MORE ON MARKET REALIST
The co-founders of Y'all Sweet Tea blew away the Sharks with their incredible numbers.
16 hours ago
From his lips to his bald head, Harvey has to defends all sort of jabs.
21 hours ago
The woman who gifted the painting to the owners had earlier sold it to another dealer as she couldnt sleep at night.
2 days ago
When it came to naming something of Harvey they would want to touch, the players didn't hold back
2 days ago
Rick Harrison's go to expert warned him not to touch it with a "10 foot pole."
2 days ago
The massive manufacturer has been operational for more than a hundred years now.
3 days ago
While the player was overwhelmed with emotion, host, Drew Carey was left hanging for a handshake.
5 days ago
Turns out, the guest's father was the renowned artist, Demetrios Jameson.
5 days ago
While the player, Rodney Flippen took the loss on the chin, fans were left heartbroken.
6 days ago
Harvey was stunned to see that Lisa would risk her marriage to get the top answer.
6 days ago
The outbreak has been linked to four deaths, and 19 hospitalizations, according to the CDC.
6 days ago
The President and CEO of Walmart, Doug McMillion expressed that AI will "literally change every job."
7 days ago
While the seller was confident that the instrument was ever so valuable, Harrison begged to differ.
7 days ago
The 54th season of the show has begun with a brand-new game, but fans fear it could be rigged.
Sep 30, 2025
The guest had absolutely no idea that the Ching Dynasty snuff bottle could be worth so much.
Sep 30, 2025
While Corey Harrison tried his best, the seller had other plans and stuck to it.
Sep 28, 2025
Harvey warned the contestant that she may be in a situation she can't handle.
Sep 27, 2025
In the end, the expert adviced the guest to put the item on a pedestal for the future.
Sep 27, 2025
Fans debated if the player got the correct answer in time, or if the judges the right call
Sep 26, 2025
While the comedian/host's answers were barely intelligible, Harvey didn't miss a beat to roast him.
Sep 26, 2025