SolarWinds has hired ex-CISA chief Chris Krebs and Facebook's former security lead Alex Stamos months after its huge hack
- SolarWinds is hiring former Homeland Security official Chris Krebs and ex-Facebook security chief Alex Stamos to help shore up its security following its huge hack, which government agencies said was probably "Russian in nature."
- Krebs and Stamos both told The Financial Times they expect to uncover a lot more damage done by the hack than has been reported already.
- Krebs headed up the Department of Homeland Security's Cybersecurity and Infrastructure Agency (CISA) until November, when he was fired by President Trump.
SolarWinds has hired two of the biggest names in cybersecurity, following the gigantic breach, which meant it acted as the gateway for hackers to penetrate US government systems.
SolarWinds announced on Thursday it was retaining a new security consulting business founded by Chris Krebs, a former Homeland Security cybersecurity official, and ex-Facebook security chief and Stanford University professor Alex Stamos.
The SolarWinds hack was first revealed in December, and likely had been ongoing since at least March. Hackers got into SolarWinds' systems, which monitor for server outages. From there, were able to get into the systems of US government agencies by putting out malicious code in SolarWind updates. A joint task force of US agencies on Tuesday issued a statement saying the hack was "likely Russian in nature."
"We have brought in the expertise of Chris Krebs and Alex Stamos to assist in this review and provide best-in-class guidance on our journey to evolve into an industry leading secure software development company," a company spokesman told Reuters in a statement.
Krebs told The Financial Times it will take years to uncover the full extent of the damage done by the hack.
"This has been a multiyear effort by one of the very best, the most sophisticated intelligence operations in the world. It was just one small part of a much larger plan that's highly sophisticated, so I would be expecting more companies that have been compromised; more techniques that we're yet to find [...] There's so much more to be written I think in this chapter of Russian cyber-intelligence operations," said Krebs.
Stamos said the hackers will probably have stashed code away so they can continue spying on US government agencies.
"The metaphor I use is the iron harvest, for Belgian and French farmers in the spring [...] After the rains they go to their fields and they still find shells from world war one and world war two. That's what it's going to be like for a while," Stamos told The FT.
"These current Russian attacks have created a new set of companies who now realize they need to be playing at a much higher level," Stamos told Reuters.
Krebs headed up the Department of Homeland Security's Cybersecurity and Infrastructure Agency (CISA) until November, when he was fired by President Trump over Twitter after Krebs repeatedly asserted that there had been no tampering with the US presidential election.
Stamos left Facebook in 2018 and is the director of Stanford University's Internet Observatory. Stamos was also hired by videoconferencing company Zoom in April 2020 to help bolster the platform's security.