Synnex has reportedly lost guard of its confidential corporate organisation to Cozy Bear — the Russian cyber criminals that hacked the IT focused contractor, Synnex. Cozy Bear’s hack has interrupted the services with the Republican National Committee, RNC.
Although RNC’s spokesman denied encountering data breach, but confirmed “Synnex, a third party provider, had been breached.” While the information got to RNC over the weekend. Then the RNC “immediately blocked all access from Synnex accounts to our cloud environment. Our team worked with Microsoft to conduct a review of our systems and after a thorough investigation, no RNC data was accessed.”
RNC spokesman noted that their organisation will continue to consort with the likes of federal law enforcement and Microsoft until this hack is resolved. Still, Synnex mode of interaction with this hits depicts the tech company is paranoid and gained trust issues as well.
Synnex also confirmed the data breach wouldn’t have been successful if Microsoft didn’t had to do business with them. It worth noting that in the space of Microsoft and SolarWind latest data breach, served as a leak the perpetrators used to hit Synnex. This actors aimed to invade Synnex “customers application within Microsoft cloud computing ecosystem.”
Synnex is reportedly working with another third-party security company to scrutinise its cyberattack. Although it seem to contradict RNC affiliation with Microsoft to resolve this hack — with their tech resources such as Azure computing and Office, they intend to resolve this case accordingly.
The connection Microsoft has encountered with cyberattacks overtime, can be linked related with the fact that 99% of these hacks are Russian originated, which also likely to be state supported. In no doubt Cozy Bear was confirmed to partner with the Russian foreign intelligence, the SVR.
Remember the SolarWind cyberattack, Microsoft was able to reveal a Russian connection with its federal agency that supported the attack that compromised the tech company’s security tools, as well as breaching its customers, including government and other tech companies.
RNC has reportedly suffered cyberattack in 2016, when the cyber security company failed in protecting Hillary Clinton’s presidential campaign. At the time, this breach led to the indictment of several government officials — this hack was traced back to Fancy Bear, another Russian cyber gang that had it State sponsor.
The list of American companies to encounter cyberattack continues to stretch, including meat supplier JBS, IT provider Kaseya, Colonial Pipeline, FireEye, etc. — whereby America’s security infrastructure weakens gradually. I suggest other companies and government agencies will start pulling out from security services by third parties.