Has been updated Technology distributor SYNNEX acknowledges that the system and Microsoft accounts may have been attacked after the US Republican National Committee (RNC) cited it as the cause of a recent security incident.
Bloomberg on Tuesday report Its APT29, also known as Cozy Bear, last week attacked RNC, an organization of the US Republican Party, holding all sorts of interesting and sensitive data.Cozy bear too Named As an entity behind a supply chain attack against SolarWinds
In response to the Bloomberg According to reports, RNC immediately nominated mega-distributor SYNNEX as the cause of the breach, stating that the data was not accessed and that it is working with Microsoft to manage the situation.
— Daniel Alvarez (@Danielle_Alva) July 6, 2021
SYNNEX’is statement “We are aware of some cases where external actors attempted to access customer applications in a Microsoft cloud environment through SYNNEX,” he admits.
The nature of RNC’s activities and hints of Cozy Bear’s involvement mean that the case could be another online skirmish between the United States and Russia. US President Joe Biden recently told Russian President Vladimir Putin to stop his compatriots from using digital weapons. “We will make it clear and respond to attempts to violate democratic sovereignty or destabilize democratic elections,” Biden said. It is not yet known if this case is considered worthy of response.
Shinex keeps distance from Kaseya
It is also worth noting that the SYNNEX statement states that “these actions may be related to recent cybersecurity attacks by managed service providers (MSPs).” Kaseya And SolarWinds.
The statement adds: “SYNNEX offers many services as part of the overall IT delivery business, including support for Microsoft cloud applications, but it is not an MSP in the context mentioned in recent media.”
And certainly not. However, like all distributors, SYNNEX has recently sought to grow beyond the box move and license sling business. In short, it means “providing stem design and integration services for the technology industry to a wide range of companies.”
These offerings include managing licenses or using more substantive hands-on consulting to monitor a customer’s cloud account.
Therefore, like MSP, or something like Kaseya or SolarWinds, SYNNEX and other distributors can be gateways for attacking many other entities.
If Cozy Bear or any other villain starts attacking Disty, it’s certainly very scary. The same is true for SYNNEX, which is currently in the process of merging with rival distieTechData. Once the deal is complete, the merged company will become the world’s largest technology distributor and an even more delicious target.
Also note that the SYNNEX statement states that it recognizes “some cases” of concern. Therefore, RNC may not be the only client who feels the stinking breath of Cozy Bears approaching discomfort. ®
Updated to add to Coordinated Universal Time 0848, July 7, 2021
Michael Urban, President of SYNNEX’s Worldwide Technology Solutions Distribution, said: Registration In a statement, “This morning we responded to media reports mentioning SYNNEX in connection with the Kaseya attack over the weekend. We have nothing to do with Kaseya and are not using the system. We have thoroughly reviewed several cases where external actors attempted to access customer applications in a Microsoft cloud environment via SYNNEX. These instances did not contain ransomware. “
Mega-distie SYNNEX is attacked and Microsoft cloud account is prone to tampering • The Register
Source link Mega-distie SYNNEX is attacked and Microsoft cloud account is prone to tampering • The Register