Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

USA: SolarWinds issues notice and FAQs on cyberattack

SolarWinds Worldwide, LLC. announced, on 20 December 2020, that it had been a victim of a cyberattack which inserted a vulnerability in SolarWinds' Orion platform software. In particular, SolarWinds highlighted that it is following the Emergency Directive 21-01 issued by the Cybersecurity and Infrastructure Security Agency Computer Emergency Readiness Team, part of the Department of Homeland Security in response to this attack, and it has removed the software builds affected by the inserted vulnerability, and has issued a Frequently Asked Questions page for consumers. In addition, SolarWinds has issued recommended steps for users of the SolarWinds Orion platform and listed the known affected products. Lastly, SolarWinds outlined that the nature of the attack indicates that it may have been conducted by an outside nation state, although the identity of the attacker has not yet been verified.

You can read the press release here and the FAQs here.