How does an organisation remedy the effects of cyber-attacks on its end-users, customers or the organisation itself as a whole? How soon do you start to see the changes that the affected organisation has implemented? Let’s know your thoughts in the comment section.
Ha-Shem Limited is an authorised SolarWinds reseller in Nigeria. We have been in partnership with this industry leader for almost nine (9) years now; hence, we can say that we understand our customers’ concerns about the much-talked-about hack that was detected last year December.
One would wonder why it is still a concern, given the fact that it is a few months close to a year that the incidence was discovered. Well, you know, some of our prospective customers are eager to know how risk-free they would be if they decide to invest in SolarWinds IT Management solutions. They are well convinced about the solutions’ capabilities. Still, it won’t hurt to be assured about their cybersecurity hardening. Right?
So, in the interest of all parties, we will be addressing various frequently asked questions and concerns you might have in relation to the occurrence.
Frequently Asked Questions
- What really happened?
- Who was affected?
- What was the response from SolarWinds?
- How do I know if I am running one of the impacted versions of the Orion Platform?
- What measures have been set in place by SolarWinds?
- How do I protect my organisation from a cyber breach?
What really happened?
On December 8, 2020, FireEye, a well-known cybersecurity firm, reported that an unidentified malicious software had compromised its networks. The malware was traced to an update from the SolarWinds Orion platform that the attackers compromised.
Who was affected?
According to reports, the malware affected as many as eighteen thousand companies and government organisations who had installed the updates.
What was the response from SolarWinds?
SolarWinds immediately took responsibility for the breach and began to set measures in place to curtail the effects of the hack on affected organisations. They also issued a security advisory that offers further guidance to SolarWinds customers on how to tell if they were affected, what steps to take, and answers to related questions. The Ha-Shem Team also participated in communicating to, and guiding customers to ensure that they were well-informed, and more importantly, well-secured.
How do I know if I am still running one of the updated versions of the Orion Software?
Please refer to the Security Advisory at solarwinds.com/securityadvisory and Security Advisory FAQs at solarwinds.com/securityadvisory/faq for more information on the affected versions of Orion Platform software.
What measures have been set in place by SolarWinds?
- SolarWinds has removed the affected software builds from their download sites and has provided software updates, including security enhancements, designed to address the malware in supported versions of the Orion server.
- SolarWinds has also implemented a company-wide ‘secure by design’ initiative to educate and give updates on further actions they are taking against cyber threats. Kindly check out the resource via the link below: https://www.solarwinds.com/secure-by-design-resources.
- Be rest assured that SolarWinds has taken full grasp of the situation and are on their toes to ensure that such cyber threats no longer occur again, and their customers are well informed on steps to take to prevent them.
How do I protect my organisation from a cyber-attack?
Everyone is at risk of cyber-attacks, but you can lower the risk in your organisation with basic cyber hygiene.
- Back up your data
- Encrypt important information
- Ensure you use multi-factor authentication (MFA)
- Secure your devices and network
- Monitor use of computer equipment and systems
- Put policies in place to guide and train your staff to be safe online
- Protect your customers
- Consider cybersecurity insurance
- Get updates on the latest risks
A data breach is a very crucial issue in this internet age, and that’s why we recommend that organisations should always be steps ahead of cybercriminals by having a secure cyber threat management and response system, regardless of their company size. Regular awareness and training should be given to your staff and end-users of your products to properly manage insider risks that can lead to hacks or data breaches.
If you need more enquiries and advice on how to address cyber threats in your organization, you can send us an email: email@example.com