_______Scroll to bottom for updates______________________________
Let's begin with this news story Austin-based SolarWinds at center of massive US government hack where we learn:
“We believe that this vulnerability is the result of a highly-sophisticated, targeted and manual supply chain attack by a nation state,” said SolarWinds CEO Kevin Thompson in a statement.
The compromise is critical because SolarWinds would give a hacker “God-mode” access to the network, making everything visible, said Alperovitch.
The company, Solar Winds, puts out a statement:
What is Orion platform? (emphasis mine)
Solution Overview: Orion Platform is a comprehensive bandwidth performance management and fault management application that allows you to view the real-time statistics of your network directly from your web browser.
Homeland Security puts out a statement
We learn from Solar Winds website that they have over 3000 customers world wide. Though not listed we know that Dominion is a customer.
Update
Also from the above news story:
....that any actual infiltration of an infected organization required “meticulous planning and manual interaction.”
Meaning, I presume, wherever this occurred it required inside co-conspirators.
Update 12/17
This does not sound good:
Well this doesn't look suspicious at all
Update 12/18
Getting worse
Comments