London Daily

Focus on the big picture.
Saturday, Jul 18, 2026

Suspected Russian hack is much worse than first feared: Here's what you need to know

Suspected Russian hack is much worse than first feared: Here's what you need to know

The scale of a sophisticated cyberattack on the U.S. government that was unearthed this week is much bigger than first anticipated.

The Cybersecurity and Infrastructure Security Agency said in a summary Thursday that the threat “poses a grave risk to the federal government.”

It added that “state, local, tribal, and territorial governments as well as critical infrastructure entities and other private sector organizations” are also at risk.

CISA believes the attack began at least as early as March. Since then, multiple government agencies have reportedly been targeted by the hackers, with confirmation from the Energy and Commerce departments so far.

“This threat actor has demonstrated sophistication and complex tradecraft in these intrusions,” CISA said. “Removing the threat actor from compromised environments will be highly complex and challenging.”

Russia accused


CISA has not said who it thinks is the “advanced persistent threat actor” behind the “significant and ongoing” campaign, but many experts are pointing to Russia.

“The magnitude of this ongoing attack is hard to overstate,” former Trump Homeland Security Advisor Thomas Bossert said in a piece for The New York Times on Thursday. “The Russians have had access to a considerable number of important and sensitive networks for six to nine months.”

Russian presidential spokesman Dmitry Peskov rejected the accusations, according to the Tass news agency.

“Even if it is true there have been some attacks over many months and the Americans managed to do nothing about them, possibly it is wrong to groundlessly blame Russians right away,” he told Tass. “We have nothing to do with this.”

The Russian Embassy in London did not immediately respond to CNBC’s request for comment.

The FBI said Wednesday it is “investigating and gathering intelligence in order to attribute, pursue, and disrupt the responsible threat actors.”

At this stage, it’s not clear what the hackers have done beyond accessing top-secret government networks and monitoring data.

Hackers also accessed systems at the National Nuclear Security Administration, which maintains the U.S. nuclear weapons stockpile, according to the Politico news site, citing officials familiar with the matter.

SolarWinds backdoor


CISA said those behind the attack used network management software made by SolarWinds, a Texas-headquartered IT firm, to breach the government networks.

As many as 18,000 SolarWinds Orion customers downloaded a software update that contained a backdoor, which the hackers used to gain access to the networks.


CISA issued an “emergency directive” this week instructing federal civilian agencies to “immediately disconnect or power down affected SolarWinds Orion products from their network.”

But the perpetrators may have used other means to access the networks. CISA said Thursday is investigating “evidence of additional access vectors, other than the SolarWinds Orion platform.”

Microsoft customers targeted


Microsoft was hacked in connection with the attack on SolarWinds’ widely used management software, Reuters reported Thursday.

Like with the cyberattack of SolarWinds, hackers infiltrated Microsoft products and then went after others, Reuters said, citing people familiar with the matter.

“We have been actively looking for indicators of this actor and can confirm that we detected malicious SolarWinds binaries in our environment, which we isolated and removed. We have not found evidence of access to production services or customer data,” a Microsoft spokesperson said in a statement shared with CNBC.

“Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others,” they added.

Microsoft said that more than 40 client organizations were compromised in the attack.

“While roughly 80% of these customers are located in the United States, this work so far has also identified victims in seven additional countries,” Microsoft President Brad Smith said in a blog.

“This includes Canada and Mexico in North America; Belgium, Spain and the United Kingdom in Europe; and Israel and the UAE in the Middle East. It’s certain that the number and location of victims will keep growing.”

Smith added that “this is not espionage as usual” and “while governments have spied on each other for centuries, the recent attackers used a technique that has put at risk the technology supply chain for the broader economy.”


U.S. President-elect Joe Biden pledged Thursday to make cybersecurity a key area of focus for his administration.

“A good defense isn’t enough; We need to disrupt and deter our adversaries from undertaking significant cyberattacks in the first place,” Biden said in a statement issued by his transition team.

“We will do that by, among other things, imposing substantial costs on those responsible for such malicious attacks, including in coordination with our allies and partners. Our adversaries should know that, as President, I will not stand idly by in the face of cyber assaults on our nation.”

President Donald Trump, who has been silent about the hacking, threatened on Thursday to veto the National Defense Authorization Act, which includes money to help prevent such cyberattacks.

Newsletter

Related Articles

0:00
0:00
Close
For 36 Years, He Scammed About 300 Luxury Hotels — Until He Was Caught
England's World Cup Exit Expected to Cost Hospitality and Retail £334 Million
Former ICC Prosecutor Aide Speaks Publicly About Allegations Against Karim Khan
Opposition Raises Questions Over June Heatwave Power Grid Pressures
Mastercard Explores Sale of Majority Stake in UK Payments Operator Vocalink
Boeing Forecasts Global Commercial Aircraft Fleet Will Double by 2045
London GP Surgeries Receive £18 Million to Expand Primary Care Capacity
Health Advisers Recommend Nationwide Meningitis B Vaccination for Teenagers
OECD Warns UK Economy Faces Slower Growth and Weak Productivity
Treasury Places Major Global Cloud Providers Under Direct Financial Oversight
Financial Markets Rally as Shabana Mahmood Emerges as Leading Treasury Candidate
Incoming Government Prepares Thames Water Nationalisation and New North Sea Drilling Approvals
UK Government Plans Deep Cuts to Bilateral Aid for African Nations
United States and Iran Exchange Direct Strikes for Seventh Consecutive Night
Incoming Prime Minister Andy Burnham Confirmed as Labour Leader Ahead of Downing Street Handover
Britain Nationalises British Steel to Protect Scunthorpe Production and Strategic Supply
Andy Burnham Takes Labour Leadership and Prepares to Become Britain’s Seventh Prime Minister in a Decade
Tech Companies Want to Move Computing Off Your Screen and Onto Your Body
White House Teleprompter Operator Earned More Than $100,000 From Bets Linked to the President's Speeches
French Prime Minister Survives No-Confidence Vote After Controversial Budget Cuts
European Commission Opens Excessive Deficit Procedure Against France
French Senate Blocks Key Immigration Reform Measures
French Government Pushes EU Action Against Ultra-Fast Fashion Imports
French Parliament Debates Expanded Autonomy Powers for Corsica
France Reopens Autonomy Talks With New Caledonia After Months of Unrest
Bordeaux Wine Producers Seek Three Hundred Million Euro Aid Package After Export Collapse
French Farmers Block Spain Border Crossings Over Imported Food Competition
Cannes Film Festival Bans Fully Artificial Intelligence-Generated Films From Competition
TotalEnergies Shifts More Than Three Billion Euros of Green Investment From Europe to the United States
LVMH Chief Executive Bernard Arnault Presents Succession Plan for Luxury Empire
Kering Reports Fifteen Percent Revenue Drop as Chinese Luxury Demand Weakens
Sanofi Reports Positive Results From Messenger RNA Respiratory Vaccine Trials
France Places Energy Price Caps Under Review to Protect Households Through Winter
EDF Connects Two New Nuclear Reactors to France’s Electricity Grid
Mistral Secures European Commission Contract for Sovereign Artificial Intelligence Models
Renault Opens Next-Generation Electric Battery Plant in Northern France
Air France Signs Two Billion Euro Sustainable Aviation Fuel Deal to Cut Emissions
Marseille Launches Three Billion Euro Port Expansion to Strengthen Mediterranean Trade Role
French-Owned Ubisoft Announces Global Restructuring With Nearly One Thousand Job Cuts
National Railway Operator Suspends Artificial Intelligence Ticket Pricing System After Consumer Backlash
United Kingdom to Ban Sales of High-Caffeine Energy Drinks to Under-Sixteens
Home Office Designates Iranian and Russian Paramilitary Groups as National Security Threats
National Health Service Launches Housing Plan to Retain London Healthcare Workers
British Heatwave Fuels Wildfires and Emergency Evacuations in Scotland
United Kingdom and Estonia Sign Defence Agreement to Strengthen NATO’s Eastern Flank
United Kingdom Cuts Bilateral Aid to African Nations by More Than Eighty Percent
Bank of England Overhauls Banking Rules to Encourage More Lending to Businesses
United Kingdom and India Free Trade Agreement Enters Into Force, Reshaping Bilateral Economic Ties
Andy Burnham Confirmed as New Labour Leader and Prime Minister-Designate
UK Government Faces Pressure Over Extreme Heat Workplace Rules
×