SolarWinds Orion Code Compromise (Sunburst)

On Sunday December 13, 2020 the Department of Homeland Security (DHS) released Emergency Directive 21-01 about the SolarWinds Orion Code Compromise, now being referred to as SunBurst. The active global attack targets versions 2019.4 through 2020.2.1 HF1 of the SolarWinds Orion Platform software that was released between March and June 2020. The breach resulted in a supply chain attack on SolarWinds customers through code compromise in the SolarWinds Orion software package. This exploit can give attackers access to companies networks and data.

Paperclip DOES NOT use SolarWinds Orion, or any SolarWinds product in which Orion is a component.