Close this search box.


Understanding the SolarWinds Supply Chain Attack

Whitepaper: Understanding the SolarWinds Supply Chain Attack

“This is the largest and most sophisticated sort of operation that we have seen.”
– Brad Smith, President, Microsoft

In December 2020, the public learned that an advanced persistent threat (APT) had compromised the SolarWinds Orion software supply chain and delivered a software update containing malicious code to over 18,000 customers. The scope of this attack is unprecedented, and the untangling exactly what happened will take years.  

Drawing on testimony from the February 23, 2021 Senate Select Committee on Intelligence hearing, SpyCloud has broken the attack down into three stages, with a focus on the critical roles played by identity and password security. 

No single security solution could have prevented such a sophisticated, surgical attack; however, the incident underscores the risks posed by weak and stolen credentials. Read the whitepaper to learn more about what happened, and how SpyCloud could have helped at each stage of the attack. 

Download the PDF version of the whitepaper to print or share with others.

Get the Whitepaper

Understanding the SolarWinds Supply Chain Attack

Trusted by market leaders

With 500+ customers around the world, including half of the Fortune 10, SpyCloud is the leader in operationalizing Cybercrime Analytics to protect businesses.

We’re on a mission to make the internet a safer place by disrupting the criminal underground. Together with our customers, we aim to stop criminals from profiting off stolen data.

#1 Global
Streaming Service
#1 Global
#1 Global Software
US Banks
#1 Global
Online Retailer
#1 US Crypto Exchange

Check Your Exposure

See your real-time account takeover exposure details powered by SpyCloud data.

[What’s New] Check Your Exposure has been expanded with more recaptured data. See Your Results Now

Close this search box.