What happened and what you should do
On December 8, 2020, security specialists announced they had found a breach in the SolarWinds Orion Platform. Many US government agencies and organizations around the world have used this platform to manage their networks, systems and information technology infrastructure.
The breach compromised an element of the SolarWinds Orion Platform software versions 2019.4 HF 5 through 2020.2.1 HF 1, released between March 2020 and June 2020. The breach is a “supply chain breach,” because it targets the clients that have run the platform.
Download our SolarWinds Orion Breach Advisory Sheet to answer:
- What is the SolarWinds Orion Breach?
- Has the vulnerable software been fixed?
- What should a company using SolarWinds Orion running the compromised builds do?
- How do I confirm if my organization has been breached?
Our guide also outlines key questions to consider, for CAOs, CROs and CCOs. If organizations have run the known compromised versions of the software, there is a possibility that they have been affected. Organizations must work with their technical teams and partners to understand if their environments were, or currently are, compromised.