Trends Report

SolarWinds And US Government Cyberattack Demands Immediate Action From All Enterprises

December 14th, 2020
Jeff Pollard, VP, Principal Analyst
Jeff Pollard VP, Principal Analyst
Alla Valente, Senior Analyst
Alla Valente Senior Analyst
Brian Kime, null
Brian Kime
With contributors:
Stephanie Balaouras , Melissa Bongarzone

Summary

Security and risk pros should understand that SolarWinds’ Orion IT management and monitoring platform was successfully breached by threat actors and distributed weaponized updates to US government agencies and commercial organizations. Security and risk pros also need to understand the nature of the tactics used and go over the possible steps required to detect, mitigate, and remediate in order to limit the damage to their organizations, given the install base and adoption of the SolarWinds toolset. The US Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 21-01, which provides comprehensive guidance on steps to take for government agencies, but the actions detailed are also relevant for commercial organizations.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.