Autodesk targeted in SolarWinds hack

Autodesk was targeted in the SolarWinds supply chain hack that was leaked last December, but it only revealed this targeting in a recent 10-Q case.

The AutoCAD developer on Wednesday released its Form 10-Q, which is filed with the SEC quarterly to serve as a public company’s financial summary. Even if the document covers the three-month quarter ending July 31, it mentions the now infamous SolarWinds supply chain hack in its “risk factors” section – an attack that was initially disclosed at the end of the year last.

In a section of the dossier dealing with cyber risks and how Autodesk is regularly targeted by threat actors, SolarWinds is cited as an example. The file states that the company identified a compromised SolarWinds server and “quickly took action to contain and correct the incidents.”

“While we believe that no customer or Autodesk product operations were disrupted as a result of this attack, other similar attacks could have a significant negative impact on our systems and operations,” the document said.

Autodesk has shared a statement with SearchSecurity.

“Autodesk identified a single compromised SolarWinds server on December 13,” the statement said. “This server was only internal and was not connected to the customer’s environment. Shortly after identification, the server was isolated, the logs were collected for forensic analysis, and the hotfix was applied. Autodesk’s security team has completed their investigation and observed no malicious activity beyond the initial software installation. “

The news was first reported by BipComputer.

The massive supply chain attack occurred when Russian threat actors gained access to SolarWinds’ Orion computer monitoring platform; they then distributed malicious updates to thousands of private and public sector customers. The fallout from the attack has been felt since its disclosure in mid-December, although the first known breach of the attack was in January 2019.

It was assigned with great confidence to the APT29 of the Russian Foreign Intelligence Unit, also known as the Cozy Bear. President Joe Biden signed a decree in April impose sanctions on the Russian government for hacking.

While Autodesk isn’t the only large company targeted in the SolarWinds hack with seemingly minimal impact, other companies, including Cisco, VMware, Intel, and Nvidia, revealed similar situations in December. Only a small number of would have 18,000 SolarWinds customers who installed the malicious updates are, however, known to the public.

Alexander Culafi is a Boston-based writer, journalist and podcaster.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *