The attempted breach joins a growing wave of Russian government-affiliated hacks and ransomware attacks
Russian state hackers affiliated with the group Cozy Bear were reportedly behind an attack last week on Synnex, a contractor that provides IT services for the Republican National Committee (RNC), Bloomberg writes. The attack may have exposed the organization’s information.
When asked by Bloomberg, a spokesperson for the RNC denied the organization’s systems had been hacked, but confirmed that one of its IT providers Synnex, had been exposed. The RNC provided the following statement in reference to the attack:
Over the weekend, we were informed that Synnex, a third party provider, had been breached. We immediately blocked all access from Synnex accounts to our cloud environment. Our team worked with Microsoft to conduct a review of our systems and after a thorough investigation, no RNC data was accessed. We will continue to work with Microsoft, as well as federal law enforcement officials on this matter.
In a statement released on July 6th, Synnex further confirmed “it is aware of a few instances where outside actors have attempted to gain access, through Synnex, to customer applications within the Microsoft cloud environment.” The company claims it is reviewing the attack alongside Microsoft and a third-party security firm. Manipulating enterprise software that interacts with Microsoft’s cloud rather than going after Azure or Office products directly shares some similarities with the SolarWinds hack in 2020.