A second hacking group has targeted SolarWinds systems | WHAT REALLY HAPPENED

A second hacking group has targeted SolarWinds systems

As forensic evidence is slowly being unearthed in the aftermath of the SolarWinds supply chain attack, security researchers have discovered a second threat actor that has exploited the SolarWinds software to plant malware on corporate and government networks.

Details about this second threat actor are still scarce, but security researchers don't believe this second entity is related to the suspected Russian government-backed hackers who breached SolarWinds to insert malware inside its official Orion app.

The malware used in the original attack, codenamed Sunburst (or Solorigate), was delivered to SolarWinds customers as a boobytrapped update for the Orion app.

Comments

SHARE THIS ARTICLE WITH YOUR SOCIAL MEDIA