SolarWinds released updated advisory for SUPERNOVA malware
SolarWinds has suffered a cyberattack, which made attackers capable of modifying a legitimate SolarWinds Orion BusinessLayer DLL file to include the SUNBURST backdoor malware. It was later found by Microsoft and Palo Alto Unit 42 researchers, that an additional malware SUPERNOVA was distributed using App_Web_logoimagehandler.ashx.b6031896.dll file, which allowed hackers to remotely execute the C# code on the victim's device, however, the researchers believe that SuperNova isn't connected to SolarWinds original attack. SolarWinds has released an updated advisory to include the data about SuperNova malware and how it was distributed. SolarWinds stated, that the vulnerability of the platform has been fixed in recent updates and advice Orion users to upgrade to the latest version. Read more...