18,000 Organizations Possibly Compromised in Massive Supply-Chain Cyberattack

Sorry, this post has not been published yet, check again later!

December 14, 2020
Published by:

Dark Reading

In what may well turn out to be one of the most significant supply-chain attacks in recent years, a likely nation-state backed group compromised systems at SolarWinds and inserted malware into updates of the company's widely used Orion network management products that were released between March and June 2020. Matt Walmsley, EMEA director at Vectra, says the attackers likely manipulated Security Assertion Mark-up Language (SAML) authentication tokens used in Single Sign On to try and escalate privileges in the early stages of the campaign.

Read publication

Most recent media coverage

30 Mins or Less: Rapid Attacks Extort Orgs Without Ransomware

October 13, 2021

Threatpost

Read more

Ransom Disclosure Act Would Require Victims to Disclose Ransom Payments Within 48 Hours

October 7, 2021

SECURITY Magazine

Read more

Successfully Influencing Employee Security Behavior

October 1, 2021

Security Boulevard

Read more