DTEX is continuing to follow the SolarWinds Supply Chain Cyberattack, as detailed in this recent Security Advisory. While the DTEX Workforce Cyber Intelligence Platform nor our cloud-infrastructure has not been directly impacted by the breach, we have received numerous requests from DTEX customers for assistance in reviewing existing endpoint and server environments for behavioral indicators, which include:

    • Inventory of assets executing impacted SolarWinds products
    • Account compromise behaviors associated with this or similar breaches
    • Contextualization of the impact (what was accessed, when and why)
The attached threat advisory provides practical examples of how DTEX InTERCEPT can and should be leveraged, along with the introduction of a new dashboard that summarizes TTPs, which may indicate suspicious activity associated with these events.