NOBELIUM Threat Actor Activity Notice from Core BTS

By: Core BTS | November 1, 2021

On Sunday, October 24, the Microsoft Threat Intelligence Center (MSTIC) reported that they detected activity associated with NOBELIUM, the Russian nation-state actor behind cyberattacks targeting SolarWinds customers in 2020. Per the report, NOBELIUM was attempting to gain access to downstream customers of multiple cloud service providers, managed service providers, and other IT services organizations.

Microsoft believes that NOBELIUM is seeking to “piggyback on any direct access that resellers may have to their customers’ IT systems and more easily impersonate an organization’s trusted technology partner to gain access to their downstream customers.”

As a Microsoft Cloud Solution Provider, Core BTS remains committed to our client’s business and IT security. Here is what you need to know:

  • This targeted NOBELIUM activity has been observed against organizations based in the United States and across Europe since May 2021.
  • Microsoft continues to observe, monitor, and notify impacted customers and partners through their nation-state notification process.
  • Microsoft has released technical guidance that can help organizations protect themselves against the latest Nobelium activity.

Core BTS has not been affected by this targeted activity. That said, Core BTS is ensuring that all possible actions are being taken to help mitigate potential threat activity. This includes, but is not limited to, the following:

  • Verifying compliance with Microsoft Partner Center security requirements
  • Removing delegated administrative privileges connections when not in use
  • Using best practices and tools to manage, monitor, detect, and respond to malicious activity
  • Taking a holistic approach to security via our Secure by Design program

We strongly encourage all of our clients to review and apply the technical guidance released by Microsoft as soon as possible. If you need help implementing risk mitigations, hardening your environment, or investigating suspicious behavior, our team is standing by to help. We are passionate about helping you minimize organizational risk through the implementation of holistic solutions.

Core BTS is a digital transformation consultancy that helps organizations simplify technical complexity, accelerate transformation, and drive business outcomes.

Subscribe to our Newsletter

Stay informed on the latest technology news and trends

Relevant Insights

Exploring the Microsoft Azure AI Portfolio: A Framework for Azure AI Design Projects

In today's rapidly evolving technological landscape, leveraging artificial intelligence (AI) is crucial for businesses aiming to stay competitive. Microsoft Azure...
Read More about Exploring the Microsoft Azure AI Portfolio: A Framework for Azure AI Design Projects

The Ultimate Guide to Where To Keep Data and Applications (2024)

Explore where your data and applications should move and why. The cloud revolution has reshaped how businesses manage data and...
Read More about The Ultimate Guide to Where To Keep Data and Applications (2024)

Predictive Maintenance with AI: Reducing Downtime and Costs

AI can use its predictive powers to fix mechanical problems before they arise, saving money and eliminating downtime Most businesses...
Read More about Predictive Maintenance with AI: Reducing Downtime and Costs