SolarWinds has reported expenses of $3.5 million from last year’s supply-chain attack, including costs related to incident investigation and remediation. Additional costs are expected throughout the next financial periods. The software maker also said it is currently the subject of numerous lawsuits, investigations, and inquiries. Multiple US government agencies confirmed that they were compromised in the incident’s disclosure. The company also disclosed that unknown threat actors breached its internal systems and injected malicious code in the Orion Software Platform source code and builds released between March 2020 and June 2020.
Source: https://www.bleepingcomputer.com/news/security/solarwinds-reports-35-million-in-expenses-from-supply-chain-attack/