Microsoft has recently reported that they have identified and removed malicious programing that infected its network via a widely-used network management system called Orion. This malware, inserted into an Orion software update, is suspected to be just one strategy of a larger, ongoing cyberattack out of Russia.
Microsoft has been watching for signs of malicious code since learning of the malware. They state the breach has not involved "production services or customer data," and that they will continue to monitor system activity. The software leader was also able to identify several of its customers who had infected versions of the Orion software.
The cybersecurity division of the Department of Homeland Security says this cyberattack is aimed at government agencies, private businesses, and infrastructure entities. M Corey Goldman "Microsoft Sounds Alarm Over SolarWinds Cyber Attack" www.thestreet.com (Dec. 18, 2020).