The hack of the US Government is a cause of great concern. The attack was deployed using SolarWind’s Orion product and malware called Sunburst. SolarWinds Orion Platform software builds versions 2019.4 through 2020.2.1 are the versions that may be (potentially) compromised.

Donnellon McCarthy Enterprises (DME) does use a SolarWinds product. However, it is the NCentral product. Ncentral is a product built from an acquisition of a client hosted remote management platform. It stands entirely on its own and has never integrated with Orion in a meaningful way. Likewise, SolarWinds bought GFI Logicnow, which is was integrated with Ncentral. This is now a subsidiary company of SolarWinds called SolarwindsMSP and is separated from the Orion Suite.

DME provides Bitdefender AV as a part of our managed services platform. Bitdefender does have the Sunburst virus definition listed and would quarantine and destroy this virus if found on a device.

We recommend that you contact your vendors to ensure they are not using SolarWinds Orion products. If they are, then confirm they are not running version 2019.4 to 2020.2.1. If they are running 2019.4 to 2020.2.1, then understand their action plan to correct this vulnerability.

Microsoft recommends you take the following actions to protect your environment from this type of attack.