There had been hints that a second group of malicious actors may have exploited a SolarWinds bug to install the Supernova backdoor — notably, there was a conclusion by Microsoft back in December that this was the case. Now, sources told Reuters that there’s evidence that a separate advanced persistent threat (APT), likely China-backed, is behind the malware.
Read full article on Threat Post