Active Exploitation of SolarWinds Software

Post published:December 14, 2020

Original release date: December 13, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) is aware of active exploitation of SolarWinds Orion Platform software versions 2019.4 through 2020.2.1, released between March 2020 and June 2020.

CISA encourages affected organizations to read the SolarWinds and FireEye advisories for more information and FireEye’s GitHub page for detection countermeasures:

SolarWinds Security Advisory
FireEye Advisory: Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor
FireEye GitHub page: Sunburst Countermeasures

This product is provided subject to this Notification and this Privacy & Use policy.

You Might Also Like

CISA Releases SCuBA Hybrid Identity Solutions Architecture Guidance Document for Public Comment

Royal Ransomware Actors Rebrand as “BlackSuit,” FBI and CISA Release Update to Advisory

Cisco Releases Security Advisory for IOS XE Software Web UI