SolarWinds Security Advisory

As you may have heard in recent news, SolarWinds was the victim of a cyberattacak within their Orion platform.
You can read the SolarWinds Security Advisory, and their associated FAQ if you would like more details on the specifics of the incident.

 

We have prepared this post to help answer any questions that our clients may have.

In short, we do NOT use any services affected by the SolarWinds Orion breach, and SolarWinds has found no evidence that their MSP product stack is affected in any way by the Orion breach.

 

However, SolarWinds, as well as us (Computing Technologies) are taking extra precautions here as well, by having the digital certificate for communications with the SolarWinds tools revoked and re-issued, we are making sure that the old cert could never be used for malicious intentions. We are already underway with upgrading client infrastructure to roll out these new digital certificates and update versions of our MSP utilities that we have from SolarWinds.

 

Microsoft has also posted a blog sharing the most up to date information and detailed technical information for defenders.

As this is an ongoing investigation, Microsoft cybersecurity teams continue to act as first responders to these attacks. Microsoft is committed to providing timely updates as new information becomes available. For the latest updates from Microsoft, see the Microsoft Security Response Center (MSRC) blog at https://aka.ms/solorigate.

 

If you have any other specific questions please feel free to contact us.