Get Permission Data breaches often turn out to be worse than they first appear, as investigators begin probing exactly what happened and when. The massive SolarWinds supply chain attack, which was identified by FireEye in December 2020 after it traced back a breach of its systems that resulted in the theft of penetration testing tools, has already fit that mold in spades. Now, it appears that attackers had backdoored SolarWinds' Orion network monitoring software by last March, which was used by 18,000 customers. Incident responders have been racing to identify exactly who then got hit with second-stage attacks via the Orion backdoor, dubbed Sunburst, as well as what types of information they may have stolen. Victims are suspected to number in the hundreds, and are known to include Microsoft and Cisco, as well as the U.S. government's Commerce, Energy, Homeland Security, Justice, Labor, State and Treasury departments.