SolarWinds breach Archives

identity breaches authentication SolarWinds SEC fines

SEC Fines Four Tech Firms for Downplaying SolarWinds Impacts

Jeffrey Burt | October 24, 2024 | Avaya, Check Point, mimecast, Securities Exchange Commission (SEC), SolarWinds breach, Unisys

The SEC fined Unisys, Avaya, Check Point, and Mimecast millions of dollars for disclosures in the wake of the high-profile SolarWinds data breach that intentionally mislead investors and downplayed the impact the ...

Security Boulevard

SolarWinds: What Hit Us Could Hit Others

BrianKrebs | January 12, 2021 | CrowdStrike, fireeye, Orion, Other, SolarWinds breach, Sudhakar Ramakrishna, Sunburst malware, Sunspot malware, Teardrop malware

New research into the malware that set the stage for the megabreach at IT vendor SolarWinds shows the perpetrators spent months inside the company's software development labs honing their attack before inserting ...

Krebs on Security

Sealed U.S. Court Records Exposed in SolarWinds Breach

BrianKrebs | January 7, 2021 | Administrative Office of the U.S. Courts, Data breaches, Nicholas Weaver, Orion, PACER, SolarWinds breach, U.S. Justice Department

The ongoing breach affecting thousands of organizations that relied on backdoored products by network software firm SolarWinds may have jeopardized the privacy of countless sealed court documents on file with the U.S ...

Krebs on Security

Does the U.S. Need a National Cyber Strategy?

Christopher Burgess | December 23, 2020 | Cyberspace Solarium Commission, Hacking, SolarWinds, SolarWinds breach

As high-profile hacks mount, should the government be involved in creating and enforcing a national cyber strategy? The number of identified companies and government entities that were among the 17,000+ compromised in ...

Security Boulevard

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

BrianKrebs | December 16, 2020 | Data breaches, fireeye, GoDaddy, Microsoft, Orion, RedDrip Team, SolarWinds breach, SUNBURST

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as ...

Krebs on Security

SolarWinds Hack Could Affect 18K Customers

BrianKrebs | December 15, 2020 | Alan Paller, Andrew Morris, Center for Strategic and International Studies, cisa, Cybersecurity and Infrastructure Security Agency, Data breaches, fireeye, GreyNoise Intelligence, James Lewis, Microsoft, Orion software, SANS Institute, SolarWinds breach, U.S. Securities and Exchange Commission, Vinoth Kumar

The still-unfolding breach at network management software firm SolarWinds may have resulted in malicious code being pushed to nearly 18,000 customers, the company said in a legal filing on Monday. Meanwhile, Microsoft ...

Krebs on Security

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

BrianKrebs | December 14, 2020 | APT29, Cybersecurity and Infrastructure Security Agency, Data breaches, Department of Commerce, FireEye hack, Microsoft, Orion, Reuters, SolarWinds breach, The Coming Storm, U.S. Treasury Department

Communications at the U.S. Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds, a security vendor that helps the federal government and a range of Fortune 500 ...

Krebs on Security