Microsoft, FireEye, and GoDaddy have collaborated to create a kill switch for the SolarWinds Sunburst backdoor that forces the malware to terminate itself. Russian state-sponsored hackers added malicious code to a Windows DLL file used by their Orion IT monitoring platform. Microsoft and FireEye released a report on Sunday with an analysis of the supply chain attack and how the Sunburst malware operates. The report also revealed that if the C2 server resolved to an IP address in one of the following ranges, the malware would terminate and update a setting, so the malware never executes again.
Source: https://www.bleepingcomputer.com/news/security/fireeye-microsoft-create-kill-switch-for-solarwinds-backdoor/