+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 
  • Home
  • tech
  • news»
  • Cybersecurity firm Malwarebytes was hacked by 'Dark Halo,' the same group that breached SolarWinds last year

Cybersecurity firm Malwarebytes was hacked by 'Dark Halo,' the same group that breached SolarWinds last year

Natasha DaileyJan 20, 2021, 03:22 IST
Business Insider
Nicolas Armer/picture alliance via Getty Images
  • SolarWinds hackers attacked cybersecurity firm Malwarebytes, ZDNet reported.
  • The company's software remains "safe to use," the CEO said.
  • Malwarebytes adds to a growing list of firms attacked by the SolarWinds hackers.
Advertisement

The same group that breached IT software company SolarWinds last year has hacked cybersecurity firm Malwarebytes, adding to the growing list of major security firms targeted by the group.

In an emailed statement, a Malwarebytes spokeswoman said based on the techniques of the attack, the company believes it was "the same threat actor" that attacked SolarWinds. Malwarebytes said hackers used a weakness in the Azure Active Directory and malicious Office 365 applications to breach the company's internal systems, according to the story first reported by ZDNet. The company said the situation was not related to the SolarWinds' breach, as Malwarebytes doesn't use any of their systems.

The SolarWinds hack last year was a "supply chain attack" that led to breaches at US government agencies and other businesses. SolarWinds, FireEye, Microsoft, CrowdStrike and now Malwarebytes have all been targeted by UNC2452/Dark Halo, a group US agencies have said the Russian government is behind. FireEye told Insider on Tuesday that its researchers are seeing new incursions from the SolarWinds attacks, including hacking into companies' Microsoft 365 email.

Read more: Top federal cybersecurity experts explain why the SolarWinds cyberattack is such a big deal - and why it's too soon to declare cyberwar

Malwarebytes learned of the breach on December 15 from the Microsoft Security Response Center and has since investigated the matter, ZDNet reported. The company's CEO Marcin Kleczynski told ZDNet the hacker only gained access to a limited subset of internal company emails and added that the "software remains safe to use."

Advertisement

In an emailed statement to Insider, a Malwarebytes spokeswoman said, "While we were fortunate to experience a limited impact on our business, this scenario underscores the need for the industry to continue to collaborate in efforts to prevent increasingly complex nation state attacks."

You are subscribed to notifications!
Looks like you've blocked notifications!
Latest Stories
Anil Ambani's Reliance Group sets up centre to helm 2030 growth strategy
Tomato prices falls over 22% in a month due to better supply
India to shift to 'smartphone era' for cars embracing 5G, advanced AI in 2025: Report
Jonathan Bailey confirms return to 'Bridgerton' for season four, production to begin next week
Dubai-based siblings to transfer jiohotstar.com domain to Reliance 'free of cost'
Trending News
Next Article
Next Story
Popular Categories
Trending Right Now

Copyright @ 2024. Times Internet Limited. All rights reserved.For reprint rights. Times Syndication Service.