Casting A Wide Net
The manual supply chain attack on SolarWinds’ Orion network monitoring platform sent shockwaves around the world, with suspected Russian foreign intelligence hackers gaining access to U.S. government agencies, entities critical infrastructures and private sector organizations.
The victims included government, consulting, technology and telecommunications companies in North America, Europe, Asia and the Middle East, FireEye researchers wrote on Dec.13. FireEye CEO Kevin Mandia said Sunday that only 50 of the 18,000 organizations that have installed malicious SolarWinds Orion code on their network have been “really impacted” by the campaign.
Similarly, Microsoft President Brad Smith said on December 17 that just over 40 of the company’s customers have been precisely targeted and compromised due to trojaned Orion updates. From tech giants, internet service providers and IT solution providers to federal agencies and county governments, here’s a deeper look at 24 victims of the colossal SolarWinds attack who have been publicly identified (so far).