On December 13, 2020, it was made public that network management software firm, SolarWinds, had experienced a cyberattack starting around March 2020 that may have resulted in the transmission of malicious code to roughly 18,000 customers using their Orion network management platform. Upon further investigation, it looks as though the initial attack potentially dated back even further to October 2019.
To make sure that Ohio School Plan members are aware of this cyberattack and take appropriate action, we would recommend that you involve your IT function leader and address the following questions:
- Do you currently run a version of SolarWinds ORION vulnerable to the SUNBURST or SUPERNOVA backdoors?
- Have you at any time run a version of SolarWinds ORION vulnerable to the SUNBURST or SUPERNOVA backdoors?
- What measures have you taken to investigate the potentially malicious activity in your system?
- Can you confirm that there is no evidence of malicious activity resulting from this vulnerability on your system?
If your district has questions, please reach out directly to your Ohio School Plan representative or contact Ohio School Plan claims handling at 866-825-2467.