Microsoft says nation-state actor behind 2020 SolarWinds cyberattack targeting IT supply chain is continuing its campaign. 140 resellers and tech service providers have been targeted by the group, Microsoft says. Nobelium APT, which the U.S. government has connected to Russia’s foreign intelligence service, or SVR, is now targeting partners that customize, deploy and manage cloud services. Microsoft says the attacks are a part of a larger wave of Nobelium activity in 2021. The group is reportedly leveraging password sprays, token theft, API abuse and spear-phishing.”]
Source: https://www.cuinfosecurity.com/report-solarwinds-hackers-targeting-supply-chain-a-17793