Security News > 2020 > December > Supply Chain Attack: CISA Warns of New Initial Attack Vectors Posing 'Grave Risk'

Supply Chain Attack: CISA Warns of New Initial Attack Vectors Posing 'Grave Risk'
2020-12-17 18:17

The U.S. government on Thursday added a new wrinkle to the global emergency response to the SolarWinds software supply chain attack, warning there are "Additional initial access vectors" that have not yet been documented.

As the incident response and threat hunting world focuses on the SolarWinds Orion products as the initial entry point for the attacks, the Cybersecurity and Infrastructure Security Agency added a note to its advisory to warn of the new information.

"This APT actor has demonstrated patience, operational security, and complex tradecraft in these intrusions. CISA expects that removing this threat actor from compromised environments will be highly complex and challenging for organizations," CISA noted.

The SolarWinds Orion supply chain compromise is not the only initial infection vector this APT actor leveraged.

The victims of the supply chain attack include several U.S. government organizations and, according to FireEye, many organizations in the government, technology, consulting, extractive and telecom sectors in North America, Europe, the Middle East and Asia.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/vojN-7asYmQ/supply-chain-attack-cisa-warns-new-initial-attack-vectors-posing-grave-risk