Before identifying what is SolarWinds hack is, let us look at what is SolarWinds. SolarWinds Inc. is an American company that develops software for businesses to help manage their networks, systems, and information technology infrastructure. The SolarWinds hack was what is known as a supply chain attack. What’s unique about this intrusion is compromised SolarWinds access and insert malware into the build process. Then that allowed targeting SolarWinds customers that deployed this backdoor update. The remarkable thing about this cyber-attack is it does not happen overnight; this attack spread to its client and went undetected for months.

Malicious code was added to the company’s software system called “Orion.” According to SolarWinds “Orion” system manages the company’s IT (Information Technology) resources. United States Securities and exchange commission (SEC) said that SolarWinds have 33,000 customers that use “Orion”. Hackers send malicious code as a system update to the customers and then spy on companies and organizations.

The Victims

SolarWinds confirmed more than 18,000 customers installed an update that has malware and left them vulnerable to hackers. Another most important thing to make this cyberattack so popular is SolarWinds has many high-profile clients.

US Agencies

• Pentagon,
• The Department of Homeland Security
• The State Department
• The Department of Energy
• The National Nuclear Security Administration
• Treasury

Private Companies

• Microsoft,
• Cisco,
• Intel Deloitte
• California Department of State Hospitals
• Kent State University

FireEye, the cybersecurity company that discovered the hack, only found out because it too was a victim of the SolarWinds cyberattack.

Who did it?

FBI and most cybersecurity experts say that Russia’s foreign intelligence service is probably responsible for the attack. On the other hand, former US President Donald Trump had suggested, That Chinese hackers may be the culprits. But Russia has denied any involvement with the cyberattack.

Microsoft’s Smith said during the February hearing that he believes Russia is behind the attack, and FireEye CEO Kevin Mandia said based on his company’s forensic analysis, the evidence is “most consistent with espionage and behaviors we’ve seen out of Russia.” However, the execs noted that the full extent of the attack is still unfolding.

Now Watch: