Cyber security firm Malwarebytes announced that threat actor behind the SolarWinds attack also breached its network last year. The intrusion took place last year, the company pointed out that hackers exploited another attack vector. The intruders compromised some internal systems by exploiting a weakness in Azure Active Directory and abused malicious Office 365 applications. The security firm found no evidence of unauthorized access or compromise in any of its internal on-premises and production environments. The company said customers of the security firm were not impacted using its anti-malware solution.”]
Source: https://securityaffairs.co/wordpress/113628/hacking/malwarebytes-solarwinds-attack.html