|
gptkbp:instanceOf
|
cybercrime
|
|
gptkbp:affects
|
private companies
US government agencies
|
|
gptkbp:alsoKnownAs
|
gptkb:Solorigate
gptkb:SUNBURST
|
|
gptkbp:attributedTo
|
gptkb:Cozy_Bear
Russian APT29
|
|
gptkbp:category
|
cybercrime
supply chain attack
state-sponsored cyberattack
|
|
gptkbp:dataCompromised
|
SolarWinds Orion updates
|
|
gptkbp:discoveredIn
|
2020
|
|
gptkbp:duration
|
March 2020 to December 2020
|
|
gptkbp:exploits
|
SolarWinds Orion software supply chain
|
|
gptkbp:firstReported
|
gptkb:Microsoft
gptkb:FireEye
|
|
https://www.w3.org/2000/01/rdf-schema#label
|
Operation: Sunburst
|
|
gptkbp:impact
|
espionage
data exfiltration
|
|
gptkbp:method
|
supply chain attack
|
|
gptkbp:notableVictim
|
gptkb:US_Department_of_Treasury
gptkb:European_Parliament
gptkb:Microsoft
gptkb:NATO
gptkb:FireEye
gptkb:US_Department_of_Homeland_Security
gptkb:US_Department_of_Commerce
|
|
gptkbp:relatedTo
|
gptkb:UNC2452
gptkb:SolarWinds_hack
gptkb:Nobelium
|
|
gptkbp:response
|
gptkb:Microsoft
gptkb:FireEye
gptkb:FBI
gptkb:US_Cybersecurity_and_Infrastructure_Security_Agency_(CISA)
|
|
gptkbp:target
|
gptkb:SolarWinds_Orion_software
|
|
gptkbp:usesMalware
|
gptkb:SUNBURST_malware
backdoor
|
|
gptkbp:bfsParent
|
gptkb:Brotherhood_of_Steel
|
|
gptkbp:bfsLayer
|
5
|