SolarWinds is back in hot water after a aktieninhaber lawsuit accused the company as to poor security practices, that they can say allowed hackers to break into at least nine Ough. S. government agencies and hundreds of companies .
The lawsuit said SolarWinds used an easily guessable password “solarwinds123” on an update server, which was subsequently breached by hackers < a href="https://techcrunch.com/2021/01/05/fbi-nsa-says-hacks-on-us-federal-agencies-likely-russian-in-origin/"> “likely Russian in origin. ” SolarWinds leader Sudhakar Ramakrishna, speaking at about a congressional hearing in Stroll, blamed the weak pass on an intern.
There are a multitude of cases of companies babies the brunt from removes caused by vendors and technicians across the supply chain.
Around are still trying to understand exactly how the hackers broke to be able to SolarWinds servers. But the languid password does reveal much wider issues about the company’s florida security practices — including that easily guessable password was considered allowed to be set to start out with.
Even if the intern is held culpable, SolarWinds still faces what’s sometimes known as vicarious liability — and can lead to hefty penalties.