CISA Reveals SolarWinds Hackers Used Password Guessing to Breach Targets

32
CISA, US Cybersecurity, and Infrastructure Security Agency, cyber criminals, SolarWinds, password spraying, password guessing, SolarWinds Orion software

US Cybersecurity and Infrastructure Security Agency (CISA) reveals the cyber criminals behind the SolarWinds hack used password spraying attacks and password guessing to breach targets in its recent hacking campaign and did not always rely on trojanized updates as the initial access vector.

CISA, in its initial advisory on the SolarWinds incident in December had said it was investigating cases where the threat actors breached targets that didn’t run the SolarWinds Orion software.

 

To Read More:  ZDNet