Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor
We have discovered a global intrusion campaign, and we are tracking the actors behind this campaign as UNC2452.
13 Dec 2020 ... FireEye products and services can help customers detect and block this attack. ... BusinessLayer.dll is a SolarWinds digitally-signed component of the Orion ... TEARDROP does not have code overlap with any previously seen malware. ... Once the threshold is met, the sample creates the named pipe ...