Feds Find More Malware Tied to SolarWinds Supply Chain Compromise

Health IT Security

Jessica Davic

Russian-based nation-state threat actors were recently tied to two newer malware variants leveraging the widespread SolarWinds Orion supply chain compromise for a host of nefarious activities, according to a recent alert from the Cybersecurity and Infrastructure Security Agency and the Cyber National Mission Force of US. Cyber Command.

The malware variants are referred to as SUNSHUTTLE and SOLARFLARE, which have been attributed to the Russian Foreign Intelligence Service. The joint alert preceded another federal agency warning that Russian-backed attackers were targeting five known vulnerabilities.

The federal researchers identified 18 malicious samples and artifacts associated with the massive SolarWinds incident first disclosed in December. The analyzed samples include...

Get the Morning Update

Thanks for subscribing!