Home | About Cloud21 | Careers | Work & Insights | Contact Us
Following news of a recent cyberattack that saw SolarWinds systems affected, the below information has been provided to support the NHS with their response.

21st January 2021

As SolarWinds is revoking the digital code-signing certificate associated with the recent security incident, many SolarWinds products and tools will need to be updated or reinstalled by customers to avoid potential impacts of install or operational failures. This includes products not known to be affected by SUNBURST or SUPERNOVA but that used the same certificate that is being revoked.

The first batch of product updates were made available yesterday, with further product updates to come on 26th January and 2nd February. The latest from SolarWinds is shared below.

Recent as of January 13, 2021, 11:00pm CST

As announced by SolarWinds President and CEO Sudhakar Ramakrishna in his Orange Matter blog, Our Plan for a Safer SolarWinds and Customer Community, we are taking key steps to ensure the security and integrity of the software that we deliver to customers. SolarWinds uses a digital code-signing certificate to digitally sign each software build, and to help end users authenticate the code comes from us. As part of our response to the SUNBURST vulnerability, the code-signing certificate used by SolarWinds to sign the affected software versions will be revoked on March 8, 2021. This is industry-standard best practice for software that has been compromised.

Regretfully, the same digital code-signing certificate used to sign our Orion Platform software affected by the SUNBURST vulnerability was also used to sign additional SolarWinds products not known to be affected by SUNBURST. While this does not mean all products are compromised, it does mean the day-to-day operation of any software signed by the compromised digital code-signing certificate may be impacted by a user’s operating system, antivirus, or endpoint protection software when the certificate is publicly revoked on March 8, 2021.

We’ve obtained new digital code-signing certificates and have rebuilt the affected versions, are re-signing our code, and will re-release all of the products previously signed with the certificate to be revoked. To ensure the performance of your SolarWinds product(s), you must upgrade to these new builds before March 8, 2021.

The full list of products is available here where an FAQ can also be found.

If you require support with this issue, please don’t hesitate to get in touch

investors-in-people
tech-uk
microsoft-solutions-partner

Our use of cookies

We use necessary cookies to make our site work. We'd also like to set analytics cookies that help us make improvements by measuring how you use the site. These will be set only if you accept. For more detailed information about the cookies we use, see our Privacy Policy page.

Necessary cookies

Necessary cookies enable core functionality such as Google Captcha for our forms. You may disable these by changing your browser settings, but this may affect how the website functions.

Analytics cookies

We'd like to collect website analytics information using Google to help us improve the website. We collect this data by running Google Analytics JavaScript on your device, which collects data about how you have interacted with our site. The data is collected in a way that does not directly identify anyone. For more information please see our Privacy Policy page.


© Copyright 2024 Cloud21 Limited   |   All Rights Reserved

Registered in England & Wales   |   #06907257