The wiki page on the attack speculates an Office360 account was hacked. Presumab... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		matwood on April 17, 2021 \| parent \| context \| favorite \| on: The Story of the SolarWinds Hack The wiki page on the attack speculates an Office360 account was hacked. Presumably it was an account from an admin, and from there I could see them probing until finding credentials for the build system.

trashcan on April 17, 2021 | [–]

No idea if it is related, but a SAML implementation security issue was disclosed the same (or very close) day that the SolarWinds attack became public knowledge. Maybe that gave them access to the admin account?

trulyme on April 17, 2021 | [–]

So they hacked MS through SW which was hacked through MS? Ironic if true.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact