Supply Chain Crisis Intensifies as Nobelium Activity Returns

By

The SolarWinds hack that took place at the end of 2020 is considered to be one of most devastating online attacks ever documented, and heightened public awareness about the significant rise in cybercrime. However, it appears the Russian organization behind this attack, Nobelium, is active yet again, this time aiming to capitalize on the ongoing supply chain dilemma.

According to an official blog post from Microsoft’s VP of Customer Security and Trust, Tom Bert, Nobelium has targeted at least 140 technology resellers and service providers that are major players in global supply chain activity. Microsoft believes that Nobelium is attempting to exploit software and cloud resellers to directly target customer’s personal IT infrastructure.

“The attacks we’ve observed in the recent campaign against resellers and service providers have not attempted to exploit any flaw or vulnerability in software but rather used well-known techniques, like password spray and phishing, to steal legitimate credentials and gain privileged access.” commented Bert in his blog post. “We have learned enough about these new attacks, which began as early as May this year, that we can now provide actionable information which can be used to defend against this new approach.”

Nobelium’s success largely relies on common system processes that network engineers or IT managers rarely give thought to. For instance, the 2020 attack launched after Orion software update was compromised by Nobelium, which eventually allowed the group to introduce malware thanks to thousands of customers unknowingly deploying the software. However, Microsoft has reported that phishing and identity theft is a major strategy in this new campaign.

The sophistication and complexity of these attacks have some experts feeling pessimistic about combating these threats, but creating public awareness is shining more light on this increasing issue. Microsoft issued new technical guidance to help businesses and organizations recognize threat patterns and enhance security measures.

As it stands, the supply chain crisis is fueling anxiety about product availability for the upcoming holiday season. Business leaders can no longer afford to ignore warnings regarding security, so investing in counter measures should be a top priority.




Edited by Maurice Nagle
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

Editor, TechZone360

SHARE THIS ARTICLE
Related Articles

Enhancing Cybersecurity Measures for Modern Businesses

By: Contributing Writer    7/2/2025

Cyberattacks are rising, and businesses of all sizes feel the pressure. Small companies often think they're too small to be targets. They aren't. Hack…

Read More

Lessons Learned from Enterprise Oracle Cloud Migrations

By: Contributing Writer    7/1/2025

Switching to Oracle Cloud can feel daunting. Security risks, unexpected expenses, and performance troubles often turn what seems like an effortless up…

Read More

Protecting Business Assets with Smarter Security Frameworks

By: Contributing Writer    7/1/2025

Protecting your business is more challenging than ever. Cyber threats are increasing every day. Hackers target small and large businesses alike, searc…

Read More

Emerging Trends in Technology and Their Impact on Future Innovations

By: Contributing Writer    7/1/2025

Technology is changing faster than ever. Business owners often struggle to keep up. What's trending today might be outdated tomorrow. Falling behind c…

Read More

Tech Podcast Award Winners Bring Excitement and Enthusiasm to a Range of Important Tech Topics

By: TMCnet Staff    6/18/2025

Tech Podcast Award winners produce engaging, informative, and often entertaining content, bringing valuable insight from industry front lines to the e…

Read More