Image: Malwarebytes
The American cybersecurity firm Malwarebytes said today that it was hacked by the same group that infringed on the IT software company SolarWinds last year.
Malwarebytes said the intrusion was not related to the incident in the SolarWinds supply chain, as the company does not use any of the SolarWinds software in its internal network.
Also: Best VPNs • Best Security Keys
Instead, the security firm said hackers were violating its internal systems by exploiting an Azure Active Directory vulnerability and abusing malicious Office 365 applications.
Malwarebytes said he learned of the Microsoft Security Response Center (MSRC) hack on December 15.
At the time, Microsoft was auditing its Office 365 and Azure infrastructure for signs of malicious programs created by the SolarWinds hackers, also known in cybersecurity circles as UNC2452 or Dark Halo.
Malwarebytes said that as soon as he learned of the breach, he began an internal investigation to determine what hackers had access to.
“After an extensive investigation, we determined that the attacker only gained access to a limited subset of the company’s internal email,” Marcin Kleczynski, co-founder and current CEO of Malwarebytes, said today.
Malwarebytes products are not affected
Because the same actor infringed SolarWinds and poisoned the company’s software by inserting the Sunburst malware in some updates to the SolarWinds Orion app, Kleczynski said they also did a very thorough audit of all its products and their source code. to look for any signs of a similar compromise or previous supply chain attack.
‘Our internal systems have not shown any evidence of unauthorized access or compromise in any local and production environments.
“Our software remains safe to use,” Kleczynski added.
Following its release today, Malwarebytes becomes the fourth major security vendor targeted by the UNC2452 / Dark Halo threat actor, which linked US officials to a Russian cyber espionage operation.
Previously targeted companies include FireEye, Microsoft and CrowdStrike.