VERY IMPORTANT

A supply chain attack that compromised the update mechanism for SolarWinds Orion software has infected more than 2,000 computers at over 100 customers, according to security firm Symantec. and FireEye. This Symantec blog has been updated with analysis of the Teardrop second-stage malware and an example of the post-compromise attack chain. Symantec also has provided clarification on the use of Symantec’s name in a certificate used to sign the SolarWinds software.