Russian hackers in March of 2020 inserted code into Solar Winds software without the company knowing it. Solar Winds is a Texas based company with customers which are public and private firms who's emails were monitored for an extended period of time. The code was inserted in these systems when the updates took place and one of the biggest cyber intrusions ever was underway. The US Treasury and Commerce Departments were targeted.
Cybersecurity Experts FireEye first found the malware in their systems earlier this month. Embarrassing for a cybersecurity firm to admit, but the hackers gained acces via Solar Winds' Security suite Orion program's back door. .FireEye's internal investigating showed how damaging the attack was.
Solar Winds' own literature shows why
Solar Winds comprehensive products and services are used by over 300,000 customers world wide including Military, Fortune 500 companies, government agencies and educational institutions. Our customer list includes:
More than 425 of the US Fortune 500
All 10 of the top 10 US telecommunications companies
All 5 branches of the US Military
The US Pentagon, State Department, NASA, NSA, Postal Service, NOAA, Department of Justice and the Office of the President of the United States.
All 5 of the top 5 US Accounting firms
Hundreds of Universities and Colleges worldwide
It hasn't been revealed which of Solar Winds' clients were actually attacked, but they've stated roughly 18,000 clients could have been affected.
There will be more to this story in the coming days.
-katykarter