Sign up for our daily briefing

Make your busy days simpler with the Axios AM and PM newsletters. Catch up on what's new and why it matters in just 5 minutes.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on the day's biggest business stories

Subscribe to the Axios Closer newsletter for insights into the day’s business news and trends and why they matter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Sign up for Axios Pro Rata

Dive into the world of dealmakers across VC, PE and M&A with Axios Pro Rata. Delivered daily to your inbox by Dan Primack and Kia Kokalitcheva.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Sports news worthy of your time

Binge on the stats and stories that drive the sports world with the Axios Sports newsletter. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tech news worthy of your time

Get our smart take on technology from the Valley and D.C. with Axios Login. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Get the inside stories

Get an insider's guide to the new White House with Axios Sneak Peek. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Denver news?

Get a daily digest of the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Des Moines news?

Get a daily digest of the most important stories affecting your hometown with the Axios Des Moines newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Twin Cities news?

Get a daily digest of the most important stories affecting your hometown with Axios Twin Cities

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Tampa Bay news?

Get a daily digest of the most important stories affecting your hometown with the Axios Tampa Bay newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Charlotte news?

Get a daily digest of the most important stories affecting your hometown with Axios Charlotte

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Nashville news?

Get a daily digest of the most important stories affecting your hometown with the Axios Nashville newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Columbus news?

Get a daily digest of the most important stories affecting your hometown with the Axios Columbus newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Dallas news?

Get a daily digest of the most important stories affecting your hometown with the Axios Dallas newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Austin news?

Get a daily digest of the most important stories affecting your hometown with the Axios Austin newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Atlanta news?

Get a daily digest of the most important stories affecting your hometown with the Axios Atlanta newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Philadelphia news?

Get a daily digest of the most important stories affecting your hometown with the Axios Philadelphia newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top Chicago news?

Get a daily digest of the most important stories affecting your hometown with the Axios Chicago newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Sign up for Axios NW Arkansas

Stay up-to-date on the most important and interesting stories affecting NW Arkansas, authored by local reporters

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Want a daily digest of the top DC news?

Get a daily digest of the most important stories affecting your hometown with the Axios DC newsletter.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Photo: Sina Schuldt/picture alliance via Getty Images

The revelation that hackers tied to Russia managed to penetrate the Treasury, Commerce and Homeland Security departments — at least — will be giving U.S. officials nightmares for a long time.

The big picture: News of the Russia-linked hack, which Reuters broke Sunday, has shaken the government and larger cybersecurity world and led some policymakers to call for retaliation against Russia.

What we know:

  • Who was (probably) behind it. Cyber operators likely working for the SVR, a Russian intelligence service, compromised the software of IT contractor SolarWinds to gain access to these government networks — and have been potentially roaming in them since March.
  • The group's history. The same hacking unit, known as APT 29 or Cozy Bear, hacked prominent cybersecurity vendor FireEye. Cozy Bear was also behind a major compromise in 2014 and 2015 of unclassified email systems at the Pentagon, White House, and State Department.
  • The upper limit of the hack's potential reach: Some 18,000 SolarWinds customers — not individuals, institutions — may have been breached in the campaign, said SolarWinds, likely including currently unnamed “national security agencies and defense contractors,” according to the Wall Street Journal’s Dustin Volz.

What we don't know:

  • What they were after. The hackers appeared to gain access to email systems within Commerce and Treasury, though we don’t know whose emails, nor just how sensitive they are. And it's possible they got deeper into government systems than merely scraping unclassified emails.
  • Whether the hackers are still active in victim networks. Once a determined and capable foreign intelligence service has forced its way into a system, it will seek new avenues to keep on spying even if its initial access points get cut off. We don't know if, or how many, victims' networks, are still compromised.
  • The full list of victims.

Yes, but: It’s a strong bet that there are other shoes waiting to drop.

  • SolarWinds’ customers include “more than 425 of the US Fortune 500,” “all ten of the top ten US telecommunications companies,” “all five branches of the US Military,” “the US Pentagon, State Department, NASA, NSA, Postal Service, NOAA, Department of Justice, and the Office of the President of the United States," and “all five of the top five US accounting firms,” per a page on the company’s website that was recently deleted.

Be smart: As stunning as the hack's apparent success may be, the effort behind it is par for the course in the world of cyberespionage. The general public just rarely gets a glimpse into the machinery of modern spying.

Update: Monday night, the New York Times reported "parts of" the Pentagon were also affected by the attack.

Go deeper

North Korean hackers targeted U.S. security researchers

Illustration: Sarah Grillo/Axios

Suspected North Korean state hackers have been using social engineering schemes to target security researchers, according to researchers with Google’s Threat Analysis Group.

Driving the news: Using platforms "including Twitter, LinkedIn, Telegram, Discord, Keybase and email," the hackers themselves posed as threat researchers in order to build legitimate profiles and backstories.

Updated 9 hours ago - World

UK government: Kremlin has plan "to install pro-Russian leadership" in Ukraine

British Foreign Secretary Elizabeth Truss. Photo: Gints Ivuskans / AFP via Getty Images

The United Kingdom's Foreign Secretary on Saturday night said the government has "information that indicates the Russian Government is looking to install a pro-Russian leader in Kyiv as it considers whether to invade and occupy Ukraine."

Driving the news: U.S. National Security Council spokeswoman Emily Horne called the intelligence "deeply concerning" in a statement to Axios. The Biden administration has said Russia is actively manufacturing a pretext for invasion and warned that Putin could use joint military exercises in Belarus as cover to invade from the north.

Updated 10 hours ago - Science

This powerful new accelerator looks for keys to the center of atoms

Illustration: Eniola Odetunde/Axios

Nuclear physicists trying to piece together how atoms are built are about to get a powerful new tool.

Why it matters: When the Facility for Rare Isotope Beams begins experiments later this spring, physicists from around the world will use the particle accelerator to better understand the inner workings of atoms that make up all the matter that can be seen in the universe.