On December 13, 2020, the US Cybersecurity and Infrastructure Security Agency alerted the general public of a known active exploitation of SolarWinds Orion and FireEye, software that is frequently used to support and monitor computer systems and networks. This exploitation is currently referred to as Sunburst.
Teqworks does not use any SolarWinds or FireEye products for any internal or external services provided to you or any of our clients.
As it is currently understood, Sunburst does not present a threat to the services and solutions Teqworks provides to our clients. We have been in contact with our partners and providers and requested detailed information as to how they are also protecting from Sunburst, and to communicate to us which, if any, solutions they provide may have exposure. As of this date, all of our partners who have responded have indicated that there is no current known exposure or threat.
Teqworks is utilizing several tools and updates provided by Trend Micro to ensure Sunburst can be detected and handled if it should enter our or any network we support.
If you have any questions regarding Sunburst, SolarWinds, FireEye, or any potential risks associated with these threats, please contact our help desk at 630.482.2227 or help@teqworks.com.
For more information:
CISA Advisory: Active Exploitation of SolarWinds Software | CISA
Trend Micro Advisory: https://success.trendmicro.com/solution/000283368
SolarWinds Advisory: Security Advisory | SolarWinds
FireEye Advisory: Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor | FireEye Inc
Connectwise Advisory: https://www.connectwise.com/company/trust