<img alt="" src="https://secure.hiss3lark.com/173130.png" style="display:none;">

 

Blog

Read or download all Datashield news, reviews, content, and more.

 

All Posts

Security Advisory - SolarWinds Orion "Sunburst" Supply Chain Attack

Security Advisory - SolarWinds Orion _Sunburst_ Supply Chain Attack

On December 13th, 2020, SolarWinds released a statement along with FireEye about a current and ongoing supply chain compromise surrounding the SolarWinds Orion products. This impacts SolarWinds Orion software versions 2019.4 through 2020.2.1, released between March 2020 and June 2020. SolarWinds has pushed out a hotfix that will resolve the affected product.

Solar Winds Security Advisory & Hotfix Link: https://www.solarwinds.com/securityadvisory

This was a highly sophisticated supply chain compromise that deployed a piece of malware being tracked as SUNBURST. FireEye has released several rules to detect the IOC’s in the environment. If hot fixing the affecting product is not possible, there are several other options:

  • Disconnect or power down affected SolarWinds Orion Products
  • Block SolarWinds hosts from communicating with external addresses until the patch can be applied.

As a precaution, Datashield recommends performing the following actions:

  • Resetting all credentials used by the SolarWinds software
  • Reset all admin credentials who utilized SolarWinds software
  • Rebuild SolarWinds Orion hosts

We will keep you updated with any relevant information as this incident progresses. Additional links and information are below:

If your organization has utilized the SolarWinds Orion product suite or if you have any questions regarding this vulnerability, please Contact Us.

Topics from this Article

News, Announcement, CVE, Cyber Security, Malware, SolarWinds, FireEye, SUNBURST

Datashield
Datashield
Official Datashield account for blog content, news, announcements and more. The articles authored include a collaboration between internal staff, specifically the security operations and marketing team.

Related Posts

Lumifi Cyber Acquires Datashield to Deliver Next-Generation Managed Detection and Response

Combines AI and Machine Learning-Based Software with MDR Services to Provide Fortune 500-Grade Security to Companies of All Sizes Palm Desert, CA and Scottsdale, AZ — May 3, 2022 — Lumifi Cyber, Inc., a next-generation managed detection and response (MDR) cybersecurity software provider, today announced its acquisition of Datashield, Inc., an end-to-end cybersecurity resilience services provider, to deliver Fortune 500-grade security to companies of all sizes for an affordable monthly price.

Datashield Becomes Member of Microsoft Intelligent Security Association (MISA)

Datashield Becomes Member of Microsoft Intelligent Security Association (MISA)

The Difference Between Cybersecurity & Network Security

The Difference Between Cybersecurity & Network Security