– The Department of Cybersecurity, Infrastructure and Security at the Department of Homeland Security has released an alert regarding a new variant of malware called SUPERNOVA, which is being used to combat the vulnerable SolarWinds Orion technology.
The new malware variant was not used in the first cyber attack on the supply chain, which the agency first drew attention to in December. The first hack was caused by attackers who exploited a previous SolarWinds Orion software update with malware, allowing a number of high-profile compromises.
The first attack affected FireEye and a number of federal agencies. At that point, SolarWinds confirmed that “the incident was likely the result of a sophisticated, targeted, and manual attack on the supply chain by an external nation-state, but we have not independently verified the identity of the attacker.”