The US Cybersecurity and Infrastructure Security Agency said that the APT group behind the recent compromise campaign targeting US government agencies used more than one initial access vector. The agency said that it is very likely that the threat actor behind this coordinated hacking campaign made use of other tactics, techniques, and procedures (TTPs) that have not yet been discovered as part of ongoing investigations. Microsoft, FireEye, and GoDaddy have collaborated to create a kill switch for the SolarWinds backdoor to force the malware to delete itself from compromised networks.
Source: https://www.bleepingcomputer.com/news/security/cisa-hackers-breached-us-govt-using-more-than-solarwinds-backdoor/