FireEye Hacked!

FireEye has uncovered a widespread campaign, that gained access to victims via trojanized updates to SolarWind’s Orion IT monitoring and management software. This campaign may have begun as early as Spring 2020 and is currently ongoing. Post compromise activity following this supply chain compromise has included lateral movement and data theft. The campaign is the work of a highly skilled actor and the operation was conducted with significant operational security.


1 Like

This is a huge story and the extent of damage isn’t even uncovered yet. Reuters reports the U.S. government was hit in the attack: hackers have been monitoring emails of officials in the U.S. Department of Homeland Security as well as the U.S. Departments of Treasury and Commerce.