Sources: investigators are checking if SolarWinds was hacked via its offices in the Czech Republic, Poland, and Belarus, where the company moved much of its engineering. Those behind the widespread intrusion into government and corporate networks exploited seams in U.S. defenses and gave away nothing to American monitoring of their systems.
“This is a very sophisticated attack, and they’ve been working on it for months,” said a person familiar with the government’s findings.
This person said an intelligence agency had told him that the intruders appeared to have “very specific information about what they were going after and where.”
“This was not a spray-and-pray attack,” the person said. “They knew exactly what they were going after and went after it.”