Although the investigation as to how SolarWinds’ was compromised by hackers and how these hackers poisoned the company’s software updates is still ongoing, new evidence reveals that it could have possibly been a meticulously planned, sophisticated supply chain attack.
Today ReversingLabs published a report which revealed that the actors who attacked SolarWinds’ most likely do so by compromising the software build and code signing infrastructure of SolarWinds Orion platform. Their access to SolarWinds’ networks could even have begun as early as October 2019, with the attackers delivering the malicious backdoor through its software release process.
