I'm not that close to it... thankfully.

But this does seem like the most serious breach in my lifetime. Amazingly far reaching in impact and scope....

Sad but interesting times. I'm working hard to keep my network safe.

suspicious of the solarwinds ads that popped up here on slashdot. Will slashdot continue peddling vendors with weak supply chains?

https://www.fireeye.com/blog/t... [fireeye.com]

SolarWinds.Orion.Core.BusinessLayer.dll is signed by SolarWinds, using the certificate with serial number 0f:e9:73:75:20:22:a6:06:ad:f2:a3:6e:34:5d:c0:ed. The file was signed on March 24, 2020.

Immediate Mitigation Recommendations

SolarWinds recommends all customers immediately upgrade to Orion Platform release 2020.2.1 HF 1, which is currently available via the SolarWinds Customer Portal. In addition, SolarWinds has released additional mitigation and hardening instructions he

"Ensure that SolarWinds servers are isolated / contained until a further review and investigation is conducted."

SolarWinds is Network Management software. This renders the software entirely useless!

Sorry for the plug, but you could always contact CirrusPoint Solutions https://cirruspoint.com if you would like to use REAL Network Management software that doesn't have 'Improvement' software built in that sends your 'usage data' back to the mother ship allowing hackers a vehicle to hide their malware, and doe