// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / SolarWinds
Breach Record

SolarWinds

DISCLOSED 2020-12-13 · SUPPLY CHAIN

The SEC has notified SolarWinds employees, including its CISO, of possible legal action related to the 2020 Russian supply chain attack. Russian hackers compromised SolarWinds and embedded a backdoor in its Orion software, impacting numerous customers. The action comes more than three years after the breach was disclosed.

The record

What we know

Disclosed
2020-12-13
Attack vector
Supply Chain
Sector
IT/Software
Country
US
Domain
solarwinds.com
ENDPOINT INVOLVED
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The attack involved a supply chain compromise where a trojanized update was signed and distributed, which a positive-security model on endpoints might not have prevented if the update appeared legitimate. Without details on endpoint security measures in place, it's unclear if an allowlist model would have blocked the initial execution.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other supply chain breaches on file

This page is the permanent ColdRecon entry for the SolarWinds disclosure. It updates if new public reporting emerges. All tracked breaches →

SolarWinds just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →