Threat Advisory: SolarWinds provide chain attack

Cisco Talos is supervising yesterday’s announcements by FireEye and Microsoft a likely state-sponsored actor compromised potentially a large number of high-value federal government and private organizations all over the world via the SolarWinds Orion product. FireEye reported upon Dec. 8 that it turned out compromised in a complicated attack where state-sponsored actors stole delicate red team equipment. Upon investigating the breach more, FireEye and Microsoft found that the adversary obtained access to victims’ systems via trojanized improvements to SolarWinds’ Orion software program.


%d bloggers like this: