In the lawsuit, the plaintiffs allege that CISO Timothy Brown, who was in charge of managing the company’s software supply chain at the time of the massive cyberattack, has failed to disclose critical information regarding the attack.
Several government agencies, corporations, and government-related organizations across the world rely on SolarWinds’ product solutions. As a result of the complex attack, which is widely attributed to state-sponsored Russian hackers, numerous networks have been compromised. As a result of this breach, a significant amount of attention was paid to cybersecurity, and several hacks, investigations, and regulatory concerns followed.
The hacker’s identity has been confirmed as being a Russian government-linked hacker, and the company has been infiltrated with malicious code through its IT monitoring and management tool Orion, which was reportedly injected by them.
A hack affecting more than 18,000 organizations worldwide was initially estimated to have occurred in October of last year, including the U.S. Dept of State and Homeland Security Department as well as the National Security Agency, as well as Microsoft Corporation. Nevertheless, SolarWinds later estimated that there were under 100 customers who had been affected by this.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: