FBI, CISA, ODNI Respond to SolarWinds Vulnerability
Thursday, December 17, 2020 | Comments

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA) and the Office of the Director of National Intelligence (ODNI) formed a cyber unified coordination group (UCG) to coordinate a response to a security breach related to SolarWinds’ Orion products.

Earlier this week, several federal departments, including the U.S. Department of Commerce, said they had a data breach related to SolarWinds software. On Dec. 13, CISA released an emergency directive related to the breach. That directive instructed all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately.

“The compromise of SolarWinds’ Orion network management product poses unacceptable risks to the security of federal networks,” said CISA Acting Director Brandon Wales in a statement released with the directive. “Tonight’s directive is intended to mitigate potential compromises within federal civilian networks, and we urge all our partners — in the public and private sectors – to assess their exposure to this compromise and to secure their networks against any exploitation.”

The UCG is intended to unify the individual efforts of FBI, CISA and ODNI as they focus on their separate responsibilities surrounding the breach. The FBI is investigating the issue and gathering intelligence to determine who was responsible for the breach and disrupt future attempts.

CISA is the lead for asset response activities related to the breach. In addition to issuing the emergency directive, CISA is in regular contact with its government, private sector and international partners and is providing technical assistance as needed and making information and resources available to help those affected by the incident recover.

ODNI is working to bring together the intelligence community’s relevant resources to support the efforts surrounding the breach.

“This is a developing situation, and while we continue to work to understand the full extent of this campaign, we know this compromise has affected federal networks within the federal government,” the three agencies said.

Would you like to comment on this story? Find our comments system below.

Post a comment
Name: *
Email: *
Title: *
Comment: *


No Comments Submitted Yet

Be the first by using the form above to submit a comment!


March 2021

4 - 4
Webinar: FirstNet — Apps Help Agencies Meet the Changing Demands as Incidents Unfold


9 - 9
Webinar: Data Security for a Remote Work Environment in 2021 and Beyond


June 2021

21 - 25
UTC Telecom and Technology Conference
Portland, Oregon

August 2021

15 - 18
APCO Conference and Expo
San Antonio, Texas

More Events >

Site Navigation