SolarWinds Supply Chain Attack

As you’ve likely seen reported, SolarWinds discovered a supply chain attack compromising their Orion business software updates that distributed malware known as SUNBURST. The malware permits an attacker to gain access to network traffic management systems, and the attacker can leverage this to gain elevated credentials. This compromise was used to target the cybersecurity firm FireEye, as well as multiple U.S. government agencies. For more information on the details of the breach, please see the advisory from the Cybersecurity & Infrastructure Security Agency.

 

Emerge does not utilize any SolarWinds products internally or to manage any of our customer’s environments. We will continue to monitor the developments from this attack to determine if we can improve our processes. As always, the security of our network and those of our customers is our number one priority.

 

Over the last year we have seen a significant increase in Supply Chain attacks across the United States. If you have questions regarding your current security posture, please contact your account manager or if you are interested in a free NIST based Cybersecurity Assessment click here.

Additional Resources