By Tatiana Prophet
One week after a U.S. government cyber-security contractor announced their own ‘hacking’ tools had been stolen by a nation-level hacking operation, the U.S. Cyber Security and Infrastructure Security Agency has instructed all civilian government agencies to "identify and shut off instances of SolarWinds Orion software running or connected to any government system."
FireEye, the Silicon Valley cyber security firm, said hackers stole the tools they use to detect vulnerabilities in their clients. Apparently the hackers used these tools to inject malware into SolarWinds Orion software, used by hundreds of thousands of public and private clients around the world including in the United States.
Dominion Voting Systems, implemented in 28 U.S. states for the 2020 election, uses SolarWinds technology for at least one operation: a password-protected file sharing page. Internet sleuths posted links and screenshots of SolarWinds Worldwide LLC and logo at the bottom of a Dominion web page. By the end of the day the logo was removed but the link to SolarWinds’ Serv-U page was still there (click on Serv-U at bottom). And the Dominion-SolarWinds page can still be seen on the Internet Wayback Machine.