SolarWinds Hack: A Massive Cyber Threat
CayceEvangelista1
80 views
12 slides
Mar 05, 2025
Slide 1 of 12
1
2
3
4
5
6
7
8
9
10
11
12
About This Presentation
This presentation explores the 2020 SolarWinds cyberattack, a sophisticated nation-state attack that compromised major U.S. government agencies and private companies. Learn how hackers infiltrated the supply chain,the impact of the breach, and key lessons in cybersecurity defense and risk mitigation
Slide Content
What is SolarWind
How did the attack happen
Timeline
Affected
Purpose
Responsible
Resolution
Conclusion
01
02
03
04
05
06
07
08
How did the attack happen
Timeline
Affected
Purpose
Responsible
Resolution
Conclusion
01
02
03
04
05
06
07
08
software company based in Tulsa, Oklahoma
providing SaaS solutions for IT infrastructure, supply
management, network administration, and other
benefits.
they have complete access to customer data, logs,
and workflow details.
Orion
this is the company product which is an IT performance monitoring system.
the platform was used by customers worldwide.
has access to IT systems to obtain log and system performance data.
providing SaaS solutions for IT infrastructure, supply
management, network administration, and other
benefits.
they have complete access to customer data, logs,
and workflow details.
Orion
this is the company product which is an IT performance monitoring system.
the platform was used by customers worldwide.
has access to IT systems to obtain log and system performance data.
Supply Chain Attack
Inserts malicious code into the Orion system.
A supply chain attack works by targeting a third
party with access to an organization's systems
rather than trying to hack the networks directly.
A backdoor was created which could be accessed
by the hackers to impersonate accounts and users
of victim organizations.
The backdoor allowed the hackers to access
system files and hide their tracks by blending into
the Orion activity, masking the malicious code from
antivirus packages.
Inserts malicious code into the Orion system.
A supply chain attack works by targeting a third
party with access to an organization's systems
rather than trying to hack the networks directly.
A backdoor was created which could be accessed
by the hackers to impersonate accounts and users
of victim organizations.
The backdoor allowed the hackers to access
system files and hide their tracks by blending into
the Orion activity, masking the malicious code from
antivirus packages.
SEPT
2019
Threat actors gain
unauthorized access
to SolarWinds network
OCT
2019
FEB
2020
MAR
2020
Threat actors test
initial code injection
into Orion
Malicious code known
as Sunburst injected
into Orion
SolarWinds
unknowingly starts
sending out Orion
software updates
with hacked code
More than 18,000 SolarWinds customers installed the
malicious updates, with the malware spreading undetected.
2019
Threat actors gain
unauthorized access
to SolarWinds network
OCT
2019
FEB
2020
MAR
2020
Threat actors test
initial code injection
into Orion
Malicious code known
as Sunburst injected
into Orion
SolarWinds
unknowingly starts
sending out Orion
software updates
with hacked code
More than 18,000 SolarWinds customers installed the
malicious updates, with the malware spreading undetected.
FireEye
Microsoft
Intel
Cisco
Deloitte
Homeland
Security
State
Commerce
Treasury
Analysis suggests that by
managing the intrusion through
multiple servers based and
mimicking legitimate network
traffic, the attackers were able to
circumvent threat detection
techniques.
Microsoft
Intel
Cisco
Deloitte
Homeland
Security
State
Commerce
Treasury
Analysis suggests that by
managing the intrusion through
multiple servers based and
mimicking legitimate network
traffic, the attackers were able to
circumvent threat detection
techniques.
The purpose of the hack remains
largely unknown. Still, there are
many reasons hackers would
want to get into an organization's
system, including having access
to future product plans or
employee and customer
information held for ransom.
largely unknown. Still, there are
many reasons hackers would
want to get into an organization's
system, including having access
to future product plans or
employee and customer
information held for ransom.
Federal investigators and cybersecurity
agents believe that most likely the
Russia's Foreign Intelligence Service
The Russian Government denied any
involvement
Chinese hackers might be behind the
cybersecurity attack, but has no
evidence to prove.
agents believe that most likely the
Russia's Foreign Intelligence Service
The Russian Government denied any
involvement
Chinese hackers might be behind the
cybersecurity attack, but has no
evidence to prove.
The SolarWinds development
released quick hotfixes to
eliminate the backdoor trojan
and was eventually followed by
a queue of organizations.
Global IT giant Microsoft was
also said to find traces of said
malware in its customer
systems, causing a global
release of security patches.
released quick hotfixes to
eliminate the backdoor trojan
and was eventually followed by
a queue of organizations.
Global IT giant Microsoft was
also said to find traces of said
malware in its customer
systems, causing a global
release of security patches.
Security practices are very important to
protect the data of the users who are using
the system.
Cybersecurity is an integral part of the system
and plays an important role in securing the
system and detect the risks of attacks.
protect the data of the users who are using
the system.
Cybersecurity is an integral part of the system
and plays an important role in securing the
system and detect the risks of attacks.
https://www.techtarget.com/whatis/feature/SolarWinds-hack-explained-Everything-you-
need-to-know
https://www.simplilearn.com/tutorials/cryptography-tutorial/all-about-- solarwinds-attack
need-to-know
https://www.simplilearn.com/tutorials/cryptography-tutorial/all-about-- solarwinds-attack
Download
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 80
- Slides 12
- Age 271 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
44 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
19 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
23 views