Palo Alto Networks has launched a program to help SolarWinds Orion customers navigate risks from cyberattacks.
Palo Alto Networks’ Unit 42 is tracking SolarWinds Orion products which are currently being exploited by malicious actors to gain access to the company’s systems.
A rapid compromise assessment to map out an organization’s attack surface and tailored incident response services are available at: https://www.paloaltonetworks.com/solarstorm-rapid-response.
Palo Alto Networks revealed that its Cortex XDR platform had prevented an attempted SolarStorm attack. The company’s systems deployed a set of indicators of compromise to customer-facing Palo Alto Networks’ products.
Nikesh Arora, chairman and CEO, Palo Alto Networks, said: “While Cortex XDR protected Palo Alto Networks and our XDR customers from attack, many other security teams are working through this.”
Palo Alto Networks is offering a rapid response package to help enterprises and governments navigate this threat:
SolarStorm rapid assessment: This complimentary assessment will determine if customers have been compromised by this threat actor by leveraging Palo Alto Networks’ Expanse platform together with the Crypsis incident response team.
SolarStorm cybersecure engagement: Customers who believe they have been impacted can engage directly in a short-term retainer with the Crypsis incident response team, who will help organizations contain and recover from the attack. During this period, customers will also receive licenses for both Cortex XDR and Expanse for two months.