Global Security Forum

Security Global Forum

Our mission is to provide clients with an online user community of industry peers and IBM experts, to exchange tips and tricks, best practices, and product knowledge. We hope the information you find here helps you maximize the value of your IBM Security solutions.

 View Only

  • 1.  SolarWinds threat

    Posted Thu January 14, 2021 07:07 PM
    Are there any Power i users (preferable Power9) that believe their systems might have been breached / compromised?  If so, I would be interested in how and when you discovered the threat.  Current Intel suggests that this malware may have been designed by a nation-state to collect data on a wide variety of systems as  well as search for means by which to inject code that would allow for on-demand back door activation.  At this early stage of investigations, forensics seem to indicate that the attack was not for exfiltration, but rather to test the edges of security for various types of systems (including the Power i that is used by a number of Federal agencies). If this is the case, then we all need to take a 2nd look at our security configs.  This is particularly important to me because some recent findings seem to indicate that various 3rd party systems that might have had either direct or indirect contact with the Orion SolarWinds system may have been actually compromised as early as September 2019. 

    Many thankx again,
    Mike

    ------------------------------
    Mike Braun
    Projects Director
    Hamer Enterprises
    McAllen TX
    956-682-3466
    ------------------------------


Related Content