Too Long; Didn't Read
SolarWinds, a leading provider of IT monitoring and management solutions for enterprises, disclosed that it had fallen prey to a widespread supply chain attack trojanizing its Orion business software updates. The attackers deployed a novel malicious tool, SUNSPOT, into the build environment of Orion’s platform to inject a backdoor known as SUNBURST. As many as 17,000 customers may have installed the trojanized software updates. The initial list of victims not only included the U.S. government but other consulting and technology firms in North America, Europe, Asia, and the Middle East.
Share Your Thoughts