5 Things To Know About Latest SolarWinds Hackers’ Attack: How Nobelium Leveraged Constant Contact In Phishing Campaign
Donna Goodison, Steven Burke
The latest attack by the Russia state sponsored group known as Nobelium involved the Constant Contact email marketing service. Here are five things you need to know about what Microsoft is calling ‘Another Nobelium Cyberattack.’
A Call To Action For MSPs: Protect Account Credentials
The new SolarWinds attack that used compromised Constant Contact account credentials is yet another warning that MSPs and technology providers need to do a better job of protecting account credentials.
Microsoft said as much with a warning that the latest breach from the state-sponsored hackers is part of a “playbook to gain access to trusted technology providers and infect their customers.”
The dramatic increase in bad actors using stolen account credentials to gain access to MSPs and their customers has been an issue that solution providers have grappled with for the last several years.
“This issue of stealing account credentials from MSPs was important as far back as three years,” said Dynamic Consulting’s Luehr. “Let now be the wake up call! Let’s not wait any further, There has already been countless attacks of MSPs and account compromises. This was important three years ago, two years ago and today. Let’s recognize it now and let’s get it fixed now!”
Dynamics Consulting, for its part, recommends that customers use Microsoft Azure Active Directory, multifactor authentication, password management and constant verification. “The internet isn’t a trusted place which means email isn’t a trusted place anymore,” he said. “The lesson here is if even it looks good, looks enticing, and looks spicy don’t click on it!”