Search form

Upcoming Webinars

Learn Effective Strategies to Automate Backups, Track Changes and Ensure Compliance
November 19, 2024

On-Demand Webinars

Cloudinary Ushers in a New DAM Era
Turn Your High-Volume CDN Log Analytics into Actionable Insights
The Future of IT Operations - AIOps, Observability and Beyond
Equinox levels up its observability fitness with Elastic
Observability Trends: Key Considerations for Modern Observability
Navigating Today's I&O Landscape: Leveraging Cloud, Hyper-Convergence and Observability
2024 Tech Trends: 10 Predictions for Tomorrow's IT Evolution
2024 Security Trends: How Generative AI Is Changing the Threat Landscape
Getting the Most Out of Elastic Observability & New Features
Tales from the trenches: Security leaders share insights on protecting higher education
The Impact of AIOps and GAI on Modern Observability
Maximizing Customer Lifetime Value: Transforming Ecommerce with AI-Powered Search
AI Meets Search: Powering a New Generation of Insights
Harnessing the Power of Generative AI in Retail
What's New in Application Monitoring: Maximizing Operational Efficiency with Enhanced Performance Insights
Supercharge Your IT Resources
Automate and Save Time
Building & Monitoring Lighting Fast, Cloud Native Payment Experiences
Getting the Most Out of Elastic Observability & New Features
Automox Virtual Summit 2023
Puzzled by Patching: Solve Endpoint Pains On-Demand
Perfecting the Customer & Employee Digital Experience with TMNAS
Gaining App-Centric Visibility Into Your IT Infrastructure
Preventing Outages: Monitor What Matters
Bridging Visibility Gaps in Your Multi-Cloud Infrastructure
Cloud Trends and How Observability Enables Hybrid Cloud and Operational Efficiency

All Webinars...

Analyst Reports

Gartner® Magic Quadrant™ for Digital Experience Monitoring 2024
Gartner® Magic Quadrant™ for Observability Platforms 2024

All Analyst Reports...

White Papers

AI is Taking "Management" Out of Digital Asset Management for IT and Product Teams
The Ultimate APM Playbook: Overcoming Roadblocks & Best Practices
Modernizing the AdTech Stack
10 best practices for mastering Azure monitoring
Key factors to consider when evaluating application monitoring tools
Cloud monitoring: A complex yet essential aspect of effective cloud management
Level up with distributed tracing: Enhancing application performance with Applications Manager
Top challenges of digitization and how network traffic analysis can help
What is APM: Understanding the Basics of Application Performance Management
What is end-user experience monitoring?
How IT leaders can drive more with less
Bandwidth throttling - A strategic approach to network bandwidth monitoring and optimization with NetFlow Analyzer
Address multi-client network traffic monitoring challenges with OpManager MSP’s new NetFlow Analyzer integration
Full-stack observability: Implementation, benefits, and ROI
Network traffic analysis for today's IT
The 2024 Observability Landscape — a survey of observability decision-makers
2024 State of IT Operations Report: Journey to Agility
OpUtils IP scanner for visibility: See everything, manage effortlessly
Digital experience monitoring in Applications Manager
How to monitor Apache web server performance metrics
How IT leaders can drive more with less
Firewall Segmentation
Startup vs. running configuration conflict: Its impact, and how to avoid it
A comprehensive guide to enhance performance and reliability in your storage systems
An IT leader's enterprise guide to drive more with less
Website monitoring in Applications Manager
Synthetic monitoring 101: A comprehensive guide to synthetic monitoring
Beyond deployment: The ongoing challenges in application performance monitoring implementation
How Is IPAM Simplifying Modern Networking?
The Elastic Generative AI Report

All White Papers...

SolarWinds Orion Hacked at Multiple US Government Agencies
December 15, 2020
Share this

The US Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive, on December 13, in response to a known compromise involving SolarWinds Orion network management products that are currently being exploited by malicious actors.

The emergency directive calls on all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately.

“The compromise of SolarWinds’ Orion Network Management Products poses unacceptable risks to the security of federal networks,” said CISA Acting Director Brandon Wales. “Tonight’s directive is intended to mitigate potential compromises within federal civilian networks, and we urge all our partners—in the public and private sectors—to assess their exposure to this compromise and to secure their networks against any exploitation.”

The New York Times reported that the hack was "engineered by one of Russia’s premier intelligence agencies."

NYT also reported that US Treasury, Commerce, State and Homeland Security Departments, and parts of the Pentagon had been compromised.

According to Fireye, a cybersecurity company that was also targeted: "The actors behind this campaign gained access to numerous public and private organizations around the world. They gained access to victims via trojanized updates to SolarWind’s Orion IT monitoring and management software. This campaign may have begun as early as Spring 2020 and is currently ongoing. Post compromise activity following this supply chain compromise has included lateral movement and data theft. The campaign is the work of a highly skilled actor and the operation was conducted with significant operational security."

Known affected products: Orion Platform versions 2019.4 HF 5 and 2020.2 with no hotfix or with 2020.2 HF 1, including:

Application Centric Monitor (ACM)

Database Performance Analyzer Integration Module (DPAIM)

Enterprise Operations Console (EOC)

High Availability (HA)

IP Address Manager (IPAM)

Log Analyzer (LA)

Network Automation Manager (NAM)

Network Configuration Manager (NCM)

Network Operations Manager (NOM)

Network Performance Monitor (NPM)

NetFlow Traffic Analyzer (NTA)

Server & Application Monitor (SAM)

Server Configuration Monitor (SCM)

Storage Resource Monitor (SCM)

User Device Tracker (UDT)

Virtualization Manager (VMAN)

VoIP & Network Quality Manager (VNQM)

Web Performance Monitor (WPM)

In a statement, Solarwinds said: "No other versions of Orion Platform products are known to be impacted by this security vulnerability. Other non-Orion products are also not known to be impacted by this security vulnerability."

Solarwinds asks customers with any of these products for Orion Platform v2020.2 with no hotfix or 2020.2 HF 1 to upgrade to Orion Platform version 2020.2.1 HF 1 as soon as possible.

SolarWinds also asks customers with any of these products for Orion Platform v2019.4 HF 5 to update to 2019.4 HF 6, available Dec. 14.

An additional hotfix release, 2020.2.1 HF 2 is anticipated to be made available Dec. 15. Solarwinds recommends that all customers update to release 2020.2.1 HF 2 once it is available, as the 2020.2.1 HF 2 release both replaces the compromised component and provides several additional security enhancements.

If you cannot upgrade immediately, the primary mitigation steps recommended by Solarwinds include having your Orion Platform installed behind firewalls, disabling internet access for the Orion Platform, and limiting the ports and connections to only what is necessary.

Share this

The Latest

SLOs for Mobile: Key Challenges and How to Address Them
November 18, 2024

SLOs have long been a staple for DevOps teams to monitor the health of their applications and infrastructure ... Now, as digital trends have shifted, more and more teams are looking to adapt this model for the mobile environment. This, however, is not without its challenges ...

Navigating the IT Modernization Journey: Insights, Challenges and Strategic Recommendations for Success
November 14, 2024

Modernizing IT infrastructure has become essential for organizations striving to remain competitive. This modernization extends beyond merely upgrading hardware or software; it involves strategically leveraging new technologies like AI and cloud computing to enhance operational efficiency, increase data accessibility, and improve the end-user experience ...

Testing AI with AI: Navigating the Challenges of QA
November 13, 2024

AI sure grew fast in popularity, but are AI apps any good? ... If companies are going to keep integrating AI applications into their tech stack at the rate they are, then they need to be aware of AI's limitations. More importantly, they need to evolve their testing regiment ...

Large-Scale Outages Highlight the Need for Continuous Testing
November 12, 2024

If you were lucky, you found out about the massive CrowdStrike/Microsoft outage last July by reading about it over coffee. Those less fortunate were awoken hours earlier by frantic calls from work ... Whether you were directly affected or not, there's an important lesson: all organizations should be conducting in-depth reviews of testing and change management ...

MEAN TIME TO INSIGHT Podcast - Episode 11: Secure Access Service Edge (SASE)
November 08, 2024

In MEAN TIME TO INSIGHT Episode 11, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at EMA discusses Secure Access Service Edge (SASE) ...

Gartner: Only 48% of Digital Initiatives Meet or Exceed Their Business Outcome Targets
November 07, 2024

On average, only 48% of digital initiatives enterprise-wide meet or exceed their business outcome targets according to Gartner's annual global survey of CIOs and technology executives ...

The Case for Adopting AI Gradually: A Roadmap for Tech Leadership
November 06, 2024

Artificial intelligence (AI) is rapidly reshaping industries around the world. From optimizing business processes to unlocking new levels of innovation, AI is a critical driver of success for modern enterprises. As a result, business leaders — from DevOps engineers to CTOs — are under pressure to incorporate AI into their workflows to stay competitive. But the question isn't whether AI should be adopted — it's how ...

Mobile App Stability Outlook 2024: Quality Reigns Supreme
November 05, 2024

The mobile app industry continues to grow in size, complexity, and competition. Also not slowing down? Consumer expectations are rising exponentially along with the use of mobile apps. To meet these expectations, mobile teams need to take a comprehensive, holistic approach to their app experience ...

Something's ROT-ten in Organizations' Storage Systems
November 04, 2024

Users have become digital hoarders, saving everything they handle, including outdated reports, duplicate files and irrelevant documents that make it difficult to find critical information, slowing down systems and productivity. In digital terms, they have simply shoved the mess off their desks and into the virtual storage bins ...

Exploring the Power of AI in Software Development
November 01, 2024

Today we could be witnessing the dawn of a new age in software development, transformed by Artificial Intelligence (AI). But is AI a gateway or a precipice? Is AI in software development transformative, just the latest helpful tool, or a bunch of hype? To help with this assessment, DEVOPSdigest invited experts across the industry to comment on how AI can support the SDLC. In this epic multi-part series to be posted over the next several weeks, DEVOPSdigest will explore the advantages and disadvantages; the current state of maturity and adoption; and how AI will impact the processes, the developers, and the future of software development ...