Team of 1000
"and said his firm's analysis suggested the code behind the crack was the work of 1,000 or more developers"
I'm still not buying this. 1,000 is far too many people to pull this off.
US markets watchdog the Securities and Exchanges Commission (SEC) has begun a probe into last year's SolarWinds cyberattack, in a bid to find out who else might have been compromised. Unnamed sources familiar with the investigation have told Reuters the US financial regulator recently sent out letters to businesses seeking …
Could be possible if you farm out the jobs in slices, keep the big picture to yourself and keep the teams from communicating with each other.
But that would require KGB-levels of team management and having one crack group putting all the pieces together properly.
Still, not impossible.
The report indicated that the signatures of 1,000 coders were detected in the malicious code, which when I read it, I was intrigued to understand how that number can be determined. Given that it was reported that 4,000 odd lines of code in the compromised DLL and then whatever the code size is for the injected payload following the call to the command control.
This is part of the evidence of state sponsorship, which if indeed 1,000 coders were involved could only be the case, as that level of organisation simply would not happen in a private hacking group.