• Cryptocurrency
  • Earnings
  • Enterprise
  • About TechBooky
  • Submit Article
  • Advertise Here
  • Contact Us
TechBooky
  • African
  • AI
  • Metaverse
  • Gadgets
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
  • African
  • AI
  • Metaverse
  • Gadgets
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
TechBooky
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Home Security

Microsoft Reveals DEV-0322 Originated The Zero-day Vulnerabilities On SolarWinds Network.

...Cozy Bear also took advantage of the Asian Leaked zero-day program on Americans.

Emeka Eni by Emeka Eni
July 16, 2021
in Security
Share on FacebookShare on Twitter

Microsoft is relentless about upgrading its software and security service. As expected, the MSTIC (Microsoft Threat Intelligence Center) revealed the latest discoveries related to the SolarWinds previous hack that believed the Russian’s are the prime and only suspect.

The MSTIC reportedly discovered a new group they called “DEV-0322” that attacked the cyber-security company, aiming to infiltrate and steal information from SolarWinds clients. It is worth noting that the cybersecurity company has several high profiled clients under its security network, especially the U.S. defense agency.

According to MSTIC, the perpetrators aimed at stealing SolarWinds software called “Serv-U FTP” — this software is presumed to boost the hacker tool to bypass the cyber-security company’s firewall and to access its high profiled clients records.

The DEV-0322 exploited a zero-day default the software company recently spotted during its routine cyber threat scan. The MSTIC used its custom Microsoft 365 Defender and detected anomalous malicious code that depicted the hackers attempted to register themselves as an administrator via Serv-U. Check Microsoft’s blog for more details about Serv-U and other malicious acts via the zero-day vulnerability.

SolarWinds recently published an in-depth analysis about Serv-U’s zero-day vulnerabilities that have been patched accordingly with its custom hotfix. A hotfix is an emerging software the cybersecurity company developed to address its cyberattack issue especially zero-day defaults.

In response to the SolarWinds report, Microsoft consented about likely zero-day vulnerabilities attached to Serv-U’s Secure Shell, SSH, a protocol that appears to be patched but not. The vulnerability of this software can permit bad actors to access future attacks if the SSH protocol connectivity is linked with the internet.

Techbooky suggests anyone running on the older Serv-U FTP server is advised to make immediate upgrades to patch up default. Else the traumatic stress SolarWinds experience at the initial hack is likely to iterate via these vulnerabilities.

Remember, SolarWinds was attacked toward the end of 2020 — at the time the Russian’s believed to orchestrate the attack but the newly discovered DEV-0322 depicts it’s an Asian-originated SolarWinds hack. The outcome exposed several government agencies and private business activities.

According to Microsoft, the DEV-0322 has habitually gone after government-affiliated entities and using VPN as a soluble means to cover their tracks while it discombobulates the SolarWinds router and tech infrastructure. Other hack groups like Cozy Bear have breached Microsoft’s and SolarWinds networks via the DEV-0322 hack tool.

Related Posts:

  • Nigeria Bureau of Statistics Data breach
    Hackers Compromised The NBS Sever, But No Ransomware Yet
  • The Liquid C&C Cybersecurity Fusion Centre is set to put Microsoft Data Centre Out of Business.
    The Liquid C&C Cybersecurity Fusion Centre is…
  • shutterstock_2350808261
    Microsoft Notifies Users of the Mandatory 2FA Deadline
  • png_20220718_215544_0000
    Cassava Technologies Secures $50M Investment Deal…
  • png_20220718_215544_0000
    Cassava Technologies Secures $50M Investment Deal…
  • png_20220718_215544_0000
    South Africa's Cassava Technologies Raises $50m From…
  • FILE PHOTO: A computer keyboard lit by a displayed cyber code is seen in this illustration picture
    Hackers Sabotaged Several Senegalese Government…
  • uber lawsuit
    Uber In Settlement With US Prosecutors Admits…

Discover more from TechBooky

Subscribe to get the latest posts sent to your email.

Tags: cyber securitycyberattackMicrosoft Russian hacksolarwinds
Emeka Eni

Emeka Eni

I am a tech enthusiast, creating contents, graphic designer and am Africa.

BROWSE BY CATEGORIES

Receive top tech news directly in your inbox

subscription from
Loading

Freshly Squeezed

  • DeepSeek Update Threatens Google and ChatGPT Dominance June 3, 2025
  • SoftBank Invests $40M in Irish Fintech Nomupay June 3, 2025
  • Apple, Meta, TikTok Sue EU as Africa Watches June 3, 2025
  • WWDC 25 Preview: Can Apple Intelligence and US Manufacturing Revive Apple? June 3, 2025
  • Meta AI Reaches 1 Billion Monthly Users May 31, 2025
  • XChat, X’s New DM Feature, Available in Beta Testing May 31, 2025

Browse Archives

June 2025
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
30 
« May    

Quick Links

  • About TechBooky
  • Advertise Here
  • Contact us
  • Submit Article
  • Privacy Policy
  • Login

© 2021 Design By Tech Booky Elite

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
  • African
  • Artificial Intelligence
  • Gadgets
  • Metaverse
  • Tips
  • About TechBooky
  • Advertise Here
  • Submit Article
  • Contact us

© 2021 Design By Tech Booky Elite

Discover more from TechBooky

Subscribe now to keep reading and get access to the full archive.

Continue reading

We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.Ok