Before we start I'm going to tell you who he is. SolarWindsIt probably won't even sound familiar to you but it is a great software company in the technology sector. It is basically a business software “factory” and has such important clients as the United States Government, Microsoft, Ford, MasterCard, Nestlé.
Well, SolarWinds has hit the jackpot for Christmas since the “hackers” They have managed to introduce malware into Orion updates, a network monitoring and management application that is one of the most used programs worldwide and even signed with the company's official seal.
One of the tips I always give to keep our computers safe from attacks is to have our systems updated to the latest version. The problem comes when the update comes with malware that infects all your systems and you download it calmly since when it is signed, no threat is recognized. It was a very sophisticated attack.
According to SolarWinds, approximately 18,000 companies from all over the world they would have downloaded the update with the virus. Among them, the Department of Treasury, Commerce and Homeland Security of the United States.
One of the most affected is the National Telecommunications and Information Administration, within the Department of Commerce, according to the NY Times.
One of the first companies to warn about the attack and make it public was FireEye, “the great cybersecurity company” in the US, which announced the theft of its cybersecurity tools as it commented precisely in the article from last week.
It is not known what the objective of the cyber attackers was, there is talk that it is more of an espionage maneuver than destruction. Basically what they were looking for was a place from which to register and know everything and not bring down a system.
According to cybersecurity expert Sergio De los Santos, "We must learn that this can happen to anyone and that we are in a moment in which we need transparency and speed to act and defend ourselves as a community with maturity, if not, it will be impossible to counteract these "attack individually and control the damage"