Jun 22, 2022 · This paper analyzes the part of VMWare in the multi-vector attack on SolarWinds. After infecting hundreds of companies' networks through the supply-chain ...
Dec 14, 2020 · This paper provides details on the specific zero-day vulnerabilities used in this attack and outlines the possible defense against this attack.
Dec 18, 2020 · The NSA said that in order to exploit this particular flaw, hackers would already need to have access to a vulnerable VMware device's management ...
People also ask
What is SolarWinds vulnerability?
What is SolarWinds' supply chain attack?
How do supply chain attacks happen?
What were the financial effects of the SolarWinds attack?
The attack involved the use of a malicious software update for the SolarWinds Orion network management platform, which was widely used by government agencies ...
Dec 9, 2020 · We have no indication that VMware has any involvement in the nation-state attack on SolarWinds. We also immediately analyzed the limited use ...
Feb 5, 2023 · The hack of SolarWinds' software more than two years ago pushed the threat of software supply chain attacks to the front of security conversations.
Missing: Exploits | Show results with:Exploits
Dec 18, 2020 · A VMware vulnerability that allowed federated authentication abuse was used by the SolarWinds hackers to attack valuable targets, ...
Dec 23, 2020 · Unit 42 has not seen any indication that VMware's software was used as an infection vector or a TTP utilized within the SolarStorm attack.
The NSA said that in order to exploit this particular flaw, hackers would already need to have access to a vulnerable VMware device's management interface — ...
Dec 23, 2020 · The malware disguises its network traffic as the Orion Improvement Program (OIP) protocol and stores reconnaissance results inside legitimate ...