An attack last year by the Spiral hacking group, believed to be based in China, used “Supernova” malware. The malware targeted a vulnerability in SolarWinds’ Orion network monitoring software. The attack using the Supernova malware that Secureworks investigated is not related to the much broader solarWinds supply chain attack, Secureworks says. That separate supply chain attacks is tied to a Russian cyberespionage campaign that leveraged a backdoor installed in an update of the Orion system, investigators say.”]
Source: https://www.cuinfosecurity.com/researchers-describe-second-separate-solarwinds-attack-a-16150