While IBM i was not the direct target, Carol discusses lessons the IBM i community can learn from the SolarWinds attack.
By Carol Woodbury
The full extent of the SolarWinds attack continues to unfold, but suffice to say that the breadth and the lengths to which the perpetrators went are, to put it mildly, stunning. I’m not going to describe the attack, but here are several websites that describe the details of the attack, and the SecurityWeek link is kept up-to-date as more details become available:
While I haven’t heard of any IBM i systems being affected, it’s not outside of the realm of possibility that an IBM i was breached as a side effect of this attack. Regardless, this type of attack should make all of us sit up and take notice and determine if we have the practices in place to fend off this type of attack if one should hit our organization.