CISA Warns of New Malware Threat to Vulnerable SolarWinds Orion Tech
Health IT Security
The Department of Homeland Security Cybersecurity and Infrastructure and Security Agency released an alert warning of a new malware variant known as SUPERNOVA, which is being used to target vulnerable SolarWinds Orion technology.
The new malware variant was not used in the initial supply chain cyberattack, which the agency first alerted to in December. The initial hack was caused by attackers exploiting a previous SolarWinds Orion software update with malware, allowing a number of high-profiled compromises.
The initial attack impacted FireEye and a number of federal agencies. At the time, SolarWinds confirmed the “incident was likely the result of a highly sophisticated, targeted, and manual supply chain attack by...