The US Cybersecurity and Infrastructure Security Agency updated its guidance to all U.S. government agencies related to the SolarWinds supply chain attack.

In an emergency update released December 30, CISA directed all federal agencies still operating versions of the SolarWinds Orion platform to update to the latest 2020.2.1HF2 version by the close of business December 31, 2020.