SolarWinds

So, there’s this company called “SolarWinds” (SolarWinds) (they have nothing to do with solar energy) that “serves the major US telecommunications companies, all five branches of the US Military, and other prominent government organizations such as the Pentagon, State Department, NASA, National Security Agency (NSA), Postal Service, NOAA, Department of Justice, and the Office of the President of the United States” (The Hacker News) and they somehow had a ‘backdoor’ to their software that got hacked by Russia (KXAN, NYT, itnews, CRN). According to FireEye, “The victims have included government, consulting, technology, telecom and extractive entities in North America, Europe, Asia and the Middle East” (FireEye). They further note that “Multiple SUNBURST samples have been recovered, delivering different payloads. In at least one instance the attackers deployed a previously unseen memory-only dropper we’ve dubbed TEARDROP to deploy Cobalt Strike BEACON.” I hope that isn’t as bad as it sounds.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s