Security News > 2020 > December > US government agencies compromised by foreign nation-state
The following day, the Cybersecurity and Infrastructure Security Agency issued an emergency directive asking all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately.
FireEye, SolarWinds, Microsoft, and other sources all have pointed to a foreign nation-state as the source of this prolonged attack.
"We have been advised this attack was likely conducted by an outside nation state and intended to be a narrow, extremely targeted, and manually executed attack, as opposed to a broad, system-wide attack."
In a post shared on Facebook, the Russian government denied any culpability in the attack, calling the claims unfounded attempts by the US media to blame Russia for attacks against US government bodies.
The company is urging customers to apply that hotfix as it will replace the compromised component and add other security enhancements.