US, UK say Russia was behind SolarWinds hack

President Joe Biden issues sanctions against 32 entities and officials, as well as expelling 10 diplomats

The Russian foreign intelligence service SVR was behind last year’s Solarwinds cyber attack, according to the UK government, confirming the long-standing suspicions made by high-profile US politicians.

The attack, which was discovered in December 2020, affected 18,000 organisations across the world including US government departments such as Homeland Security (DHS).

Russian state-backed hackers were the main suspects for carrying out the compromise, with the Trump administration’s Secretary of State Mike Pompeo stating in December that Russia was “clearly” behind the attack. A month later, the US government issued a statement claiming that the advanced persistent threat (APT) actor behind the incident is “likely Russian in origin”.

This week, the UK’s National Cyber Security Centre (NCSC) confirmed the US’ suspicions, finding it “highly likely the SVR was responsible for gaining unauthorised access to SolarWinds “Orion” software and subsequent targeting”. The Foreign, Commonwealth and Development Office (FCDO) has also summoned the Russian Ambassador over the UK government’s “deep concern at a pattern of malign activity, including cyber intrusions”.

To coincide with the UK government's statement, US president Joe Biden also announced new sanctions against Russia, targeting 32 entities and officials, as well as expelling 10 diplomats.

According to the president, the sanctions were “proportionate” and in response to the Solarwinds incident as well as Russia’s attempts to influence the 2020 US presidential election "and other acts of disinformation".

"I was clear with President Putin that we could have gone further, but I chose not to do so. The United States is not looking to kick off a cycle of escalation and conflict with Russia,” said Biden.

FCDO permanent under secretary, Sir Philip Barton, “made clear the UK’s support for the actions announced by President Biden in response to Russia’s recent activity”, according to a FCDO spokesperson.

Barton “set out the UK assessment that the Russian Intelligence Services were behind the SolarWinds compromise” and has “informed the Ambassador that the UK will continue to work with our allies to call out and counter malign operations by the Russian Intelligence Services”.

“Sir Philip also stated the UK’s concern at the build up of Russian military forces near the Ukrainian border and illegally-annexed Crimea. These activities are threatening and destabilising. Russia needs to cease its provocations and de-escalate tensions in line with its international obligations,” the FCDO spokesperson added.

Commenting on the NCSC’s findings, Foreign Secretary Dominic Raab, said that the UK and US governments “are calling out Russia’s malicious behaviour, to enable our international partners and businesses at home to better defend and prepare themselves against this kind of action”.

Raab also vowed that the UK will “continue to work with allies to call out Russia’s malign behaviour where we see it”.

Featured Resources

Preparing for AI-enabled cyber attacks

MIT technology review insights

Download now

Cloud storage performance analysis

Storage performance and value of the IONOS cloud Compute Engine

Download now

The Forrester Wave: Top security analytics platforms

The 11 providers that matter most and how they stack up

Download now

Harness data to reinvent your organisation

Build a data strategy for the next wave of cloud innovation

Download now

Recommended

McAfee’s zero trust solution strengthens private applications’ security
cyber security

McAfee’s zero trust solution strengthens private applications’ security

3 Aug 2021
Senate report slams agencies for poor cyber security
cyber security

Senate report slams agencies for poor cyber security

3 Aug 2021
Mastering endpoint security implementation
Security

Mastering endpoint security implementation

3 Aug 2021
86% of organizations expect a cyber attack in the next 12 months
cyber attacks

86% of organizations expect a cyber attack in the next 12 months

3 Aug 2021

Most Popular

RMIT to be first Australian university to implement AWS supercomputing facility
high-performance computing (HPC)

RMIT to be first Australian university to implement AWS supercomputing facility

28 Jul 2021
Samsung Galaxy S21 5G review: A rose-tinted experience
Mobile Phones

Samsung Galaxy S21 5G review: A rose-tinted experience

14 Jul 2021
Zyxel USG Flex 200 review: A timely and effective solution
Security

Zyxel USG Flex 200 review: A timely and effective solution

28 Jul 2021