US government starts to scale back efforts to combat SolarWinds hack
The U.S. government will scale back its efforts to combat the SolarWinds hack. The government has utilized two unified coordination groups (UCGs) to respond to the hack and will return to using “standard incident management procedures” going forward. The groups are made up of the FBI, the NSA, the Office of the Director of National Intelligence, and the Cybersecurity and Infrastructure Security Agency (CISA).
A senior administration official of the Biden administration announced that the administration is “standing down” coordinated efforts by the agencies.
“Due to the vastly increased patching and reduction in victims, we are standing down the current UCG surge efforts and will be handling further responses through standard incident management procedures,” said deputy national security advisor for cyber and emerging technology Anne Neuberger in a statement (via The Hill).
At least nine federal agencies and 100 private sector groups were compromised as part of the SolarWinds hack. Vulnerabilities in Microsoft’s Exchange server technology played a major role in the hack, which the coordinated groups responded to.
“While this will not be the last major incident, the SolarWinds and Microsoft Exchange UCGs highlight the priority and focus the Administration places on cybersecurity, and at improving incident response for both the U.S. government and the private sector,” said Neuberger.
The SolarWinds hack created serious security vulnerabilities across a range of organizations and sectors. Neuberger said that the white House will work with Congress, global partners, and the private sector to “build back better in new and innovative ways, to modernize our cyber defenses and enhance the nation’s ability to quickly and effectively respond to significant cybersecurity incidents.”
The SolarWinds hack was formally attributed to Russia by the Biden administration. The administration also announced several sanctions against Russia in response to the hack (via The Hill).
While Microsoft took several steps to address vulnerabilities utilized by the hack, many organizations remained vulnerable. Mitigation tools and patches were sent out, but some organizations did not have the knowledge or ability to remove remaining web shells left as part of the hack. In a rare move, the FBI received a warrant and actively removed malicious code from computers to help combat the attack (via NBC).
Windows 10 2004, 20H2, and 21H1 will get ‘news and interests’ feature
Microsoft has released a new preview build for the next version of Windows 10, known as version 21H1 and expected to ship publicly this spring. Today’s preview build introduces Microsoft’s new ‘news and interests’ Taskbar flyout, which puts the weather forecast and news headlines right on the Taskbar.
Review: Building a PC inside the Lian Li O11D Mini is dream-like
Lian Li’s O11D Mini is a mid-tower chassis that’s compact enough to require an SFX power supply. This may put off those who do not own an SFX PSU already, but this really is one of the best PC cases I’ve had the pleasure of building a desktop inside.