Security News > 2020 > December > SolarWinds-related cyberattacks pose grave risk to government and private sector, says CISA
State-sponsored hackers who exploited a security hole in a SolarWinds monitoring tool to infiltrate government and business networks have apparently left a long line of victims in their wake.
Asserting that this threat "Poses a grave risk" to the federal, state, and local governments as well as to critical infrastructure providers and the private sector, CISA sees the removal of the attackers from compromised networks as a highly complex and challenging endeavor.
Security firm FireEye, which itself was the victim of an attack that it blamed on a foreign nation-state, reported that the attackers were able to gain access to victims by hiding malicious code in updates to the SolarWinds Orion networking monitor platform in what is known as a supply chain compromise.
In its advisory, CISA said that the attacker is patient, well-resourced, and focused.
Further, not all organizations affected by the SolarWinds compromise have yet been targeted by the attacker with additional actions.