According to reports, Russian state hackers associated with the group Cozy bear were behind an attack on Synnex last week. Synnex is a contractor providing IT services to the Republican National Committee (RNC). This attack could have exposed information about the organization.
SolarWinds could have exposed data from more than 100 companies and government agencies, as well as compromised tools used by cybersecurity companies to protect against such attacks as FireEye.
Parallels can also be drawn between the breach of the RNC, the hack of Hilary Clinton’s 2016 presidential campaign, and the hacking of the Democratic National Committee. This breach and thousands of emails leaked on WikiLeaks led to 12 GRU members being indicted.
They were connected to Fancy Bear, another group of Russian-inspired hackers.
RNC attacks are just one of a number of ransomware attacks that have hit critical infrastructure and businesses in the US. There are many ransomware attacks on US companies and infrastructure. Bloomberg suggests Cozy Bear’s attack could have used these ransomware hacks as a kind of cover, and even if they didn’t, attacking political targets is an ongoing problem that doesn’t always end in a dramatic leak.