The vendor's “Orion” monitoring platform security SolarWinds was hacked and there are rumors that it was used in attacks against major US government agencies.
These attacks could be linked to an attack we reported last week that resulted in the leak of top security company hacking tools FireEye.
A statement from Kevin Thompson, President and CEO of SolarWinds, stated that the company "has a potential vulnerability which is believed to be related to updates March and June 2020 in Orion monitoring products ”.
"We believe this vulnerability was exploited in a highly sophisticated, targeted and manual attack chains (chain attack) from a state. We are working closely with FireEye, the Federal Bureau of Investigation (FBI), the intelligence community and other law enforcement authorities to investigate these matters. So we are limited in what we can say at this time.”