The FBI is still focused on identifying victims, collecting and analyzing evidence and sharing information about the sophisticated hack, according to a joint statement on Tuesday from the FBI, National Security Agency, Office of the Director of National Intelligence and the Cybersecurity and Infrastructure Security Agency. The cyberattacks are ongoing, according to the agencies.
The hack targeted updates in widely used software from Austin, Texas-based SolarWinds Corp., which has said as many as 18,000 of its customers may have received the malicious code. According to the statement, the agencies believe that “a much smaller number has been compromised by follow-on activity on their systems.”
“We have so far identified fewer than 10 U.S. government agencies that fall into this category, and are working to identify the nongovernment entities who also may be impacted,” according to the statement.
Russia has rejected accusations it was behind the hack.
However, in the statement, the agencies said the attacks were likely “Russian in origin” and are believed to be “an intelligence gathering effort.”
Tuesday’s statement is the latest contradiction of Trump’s assessment of the hack. Attorney General William Barr and Secretary of State Mike Pompeo have previously said Russia was likely responsible.
“The Cyber Hack is far greater in the Fake News Media than in actuality. I have been fully briefed and everything is well under control. Russia, Russia, Russia is the priority chant when anything happens because Lamestream is, for mostly financial reasons, petrified of discussing the possibility that it may be China (it may!),” Trump wrote in a series of tweets Dec. 19.
©2021 Bloomberg L.P., Distributed by Tribune Content Agency, LLC