CISA has issued a warning about a recent cyber-attack in which a SolarWinds Orion platform and a Pulse Secure VPN appliance were both used maliciously.
Threat actors have targeted both the SolarWinds platform and the Pulse Secure virtual private network (VPN) appliances – the former for supply chain attacks and the latter for the initial access to an environment.
CISA warns that the newly identified attack should not be blamed on the Russian Foreign Intelligence Service (SVR), which the US and other countries hold responsible for the breach of government and private organizations through the SolarWinds Orion platform.
To Read More: SecurityWeek