The Wall Street Journal identified 24 businesses so far that have downloaded the SolarWinds software infected with malicious code.

Dark Reading Staff, Dark Reading

December 22, 2020

1 Min Read

A new Wall Street Journal analysis began to name some of the organizations affected in a major cyber-espionage campaign conducted by suspected Russian nation-state attackers. The victims include major US technology and accounting firms, a university, and at least one hospital.

Companies affected include Cisco, Intel, Nvidia, VMware, Deloitte, and Belkin International, in addition to California Department of State Hospitals and Kent State University, the WSJ found. Analysis revealed infected machines at 24 organizations that downloaded infected versions of SolarWinds Orion network management software, which had a backdoor installed in a routine update.

Cisco detected the malicious software on some employee systems and lab systems; so far, it says there is no effect on its products or services. Intel is investigating and has said there is no indication attackers accessed its network. Similarly, the other organizations affected confirm they detected the infected software but there is no indication attackers have exploited it.

The 24 companies identified here mark just a small number of the some 18,000 organizations that may have been affected in the massive supply chain attack, news of which broke last week.

Read the full WSJ analysis here.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights