Syxsense Confirms There is Zero SolarWinds® Orion® in its Environment and is Not a SolarWinds Customer
News provided by
Share this article
Share this article
ALISO VIEJO, Calif., Dec. 23, 2020 /PRNewswire/ Syxsense, a global leader in IT and security management solutions, has announced that it can confirm there is zero SolarWinds software in its environment, is not a SolarWinds customer and does not use any of its software. In light of the recent SolarWinds Orion vulnerability, many organizations are auditing their third-party vendors. Syxsense can confirm that there is zero SolarWinds software present in its environment in any classification of device. Furthermore, any organization wanting to detect the vulnerable SolarWinds .dll on their devices can start a Syxsense trial.
Trump administration says Russia behind SolarWinds hack. Trump himself begs to differ
Microsoft’s analysis of hack suggests someone else had a crack at SolarWinds in 2019 when next-level DLL hell followed likely developer pipeline compromise Share
Copy
United States secretary of state Mike Pompeo has laid the blame for the SolarWinds hack on Russia, but his boss begs to differ.
Pompeo on Friday gave an interview with pro-Trump conservative talk radio host Mark Levin, the transcript of which was posted by the State Department.
During the interview Levin asked about the SolarWinds incident. Pompeo responded by saying: “I think it’s the case that now we can say pretty clearly that it was the Russians that engaged in this activity.”
Get Permission
SolarWinds has removed a list of selected customers from its website (above) following the discovery that its Orion software had been Trojanized and used to hack an unknown number of users.
As befits any data breach investigation that is rapidly unfolding in the public eye, more details about the SolarWinds breach continue to appear seemingly on an hourly basis.
Unfortunately, newly discovered victims are continuing to come forward at nearly the same pace, especially because attackers appear to have been operating undetected for at least nine months after successfully Trojanizing multiple versions of SolarWinds Orion network-monitoring security software, beginning in March. The Trojanized software was still available for download on Monday, and for some breached organizations, attackers may still be inside their network.
OCR Warns of Global Supply-Chain Cyberattacks Via SolarWinds Orion healthitsecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from healthitsecurity.com Daily Mail and Mail on Sunday newspapers.
Thinkstock
Hot patching and isolating potentially affected resources are on the IT response schedule as enterprises that employ SolarWinds Orion network-monitoring software look to limit the impact of the serious Trojan unleashed on the platform.
The supply-chain attack, reported early this week by Reuters and detailed by security researchers at FireEye and Microsoft involves a potential state-sponsored, sophisticated actor gained access to a wide variety of government, public and private networks via Trojanized updates to SolarWind’s Orion network monitoring and management software. This campaign may have begun as early as spring 2020 and is ongoing, according to FireEye and others.