Microsoft and FireEye say they have found three more malware strains in connection with the SolarWinds supply-chain attack. The malware is called GoldMax (aka SUNSHUTTLE), GoldFinder, and Sibot. Microsoft also named the actor behind the attacks as NOBELIUM, which is also being tracked under different monikers by the cybersecurity community. FireEye said it observed the malware at a victim compromised by UNC2452, but added it hasn’t been able to fully verify the backdoor’s connection to the threat actor.
Source: https://thehackernews.com/2021/03/researchers-find-3-new-malware-strains.html