
image credit: adobe stock
The cyberattack involved Russia-linked threat actors breaching SolarWinds systems in 2019, or possibly even earlier. The hackers compromised the automated build environment for the company’s Orion monitoring software, and in the spring of 2020 they pushed out malicious Orion updates to SolarWinds customers.
The malicious updates were sent out to thousands of SolarWinds customers, but only approximately 100 organizations were of interest to the attackers and received additional malware. This included private and government organizations.