The compromise of the SolarWinds Orion Network Configuration Manager Update has been in the news since its discovery in December 2020. The impact of this cyberattack on a software supply chain (attacking a vendor’s software update build) is quite extensive and poses a significant risk for the downstream customers.
The sophistication of the attack and the organizations that were ultimately targeted is astonishing and terrifying. However, this is only the tip of the iceberg. How deeply an organization has been compromised or what intellectual property was exfiltrated is yet to be fully determined. What is clear is that the ramifications of this cyberattack are far reaching and it may take years to fully understand the complete impact of it.
To offer deeper insights on this topic, we are pleased to announce the publication of our latest whitepaper titled “SolarWinds – An Overview” authored by Information Technology Risk Control Specialist Tushar Nandwana.
The article provides a short summary of the history of the threat, information on why this threat should be a concern to all, and guidance on third-party resources to aid with education and remediation on this matter.
Contact us with any questions or feedback. More whitepapers can be found on our website.