Daily Archives: December 17, 2020

SolarWinds impact getting a bit larger

Posted on December 17th, 2020 at 17:01 Susan Bradley Comment on the AskWoody Lounge

As someone just said… 2020 is turning out to be lovely…. I’ll post more tonight

At this point, just turn off your computers.https://t.co/PVUqHj71ms

— BleepingComputer (@BleepinComputer) December 17, 2020

pic.twitter.com/2GBfCTRSQx

— Frank X. Shaw (@fxshaw) December 18, 2020

Statement from Microsoft…. “Our investigations, which are ongoing, have found absolutely no indications that our systems were used to attack others”

So first off…. what does this mean? SolarWinds is an enterprise monitoring tool that is used by Government systems and by a who’s who of businesses. Assuming this post is right, you’ll see quite a few names on this list of clients that you recognize. A piece of code with an intentional backdoor was inserted into the development of this monitoring software. This monitoring software was then installed on networks. So that – in theory – as the bits and bytes flew by this attacker could see everything on the network. As the CISA document spells out, someone was hiding inside the networks of major companies for many months.

Does it mean they are in your computer – that they’ve compromised EVERYONE’s computer? No. And most of the big a/v vendors have put in detection for this backdoor code, so if you did have it in your system you’d be getting a strange notification from your antivirus. But it is disturbing to say the least that an attacker (theorized to be Russia at this time) had potential access for months into many key systems and we are only finding out about it now. More as we know more….

Windows News Patch Lady Posts

Welcome to our unique respite from the madness.

It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.

Plus Membership

Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.

AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments. Click here for details and to sign up.