Digital Certificate Update for MSP Products

As you know, our systems experienced a supply chain attack on SolarWinds® Orion® Platform software, 2019.4 HF 5, 2020.2 with no hotfix installed,and 2020.2 HF 1. Based upon our current investigation, we have found no evidence that our SolarWinds MSP products are vulnerable to the supply chain attack. Please note, our updated security advisory provides additional details and answers to frequently asked questions about this issue, including specific product lists: www.solarwinds.com/securityadvisory.

As an update to our previous notification, we have just received an extension on the revocation date of our current digital certificate to March 8 February 22, 2021, 11:59 PST.

As a best practice, to further enhance the security of our products, we have retained third-party cybersecurity experts to assist us in these matters, guiding us in improving our processes and controls.

To that end and to provide additional assurance to all of our customers, we have made the decision to digitally re-sign our products and have requested (and received) a new digital certificate, which reflects a recertification of the authenticity of SolarWinds products, both current and future.

What to expect next:

  • We intend to issue new product releases containing the updated certificate beginning December 17, 2020.
  • The existing certificate used by MSP products will be revoked on December 21, 2020. Please note, the revocation date for our current digital certificate has been extended to December 23, 2020, 11:59 PST.
  • As an update to our above notification, we have just received an extension on the revocation date of our current digital certificate to March 8 February 22, 2021, 11:59 PST.
  • You should receive an update from us within the next 24 hours containing specific details as to the availability of the releases and further actions you will need to take, including product updates, to help ensure your operations are not impacted by the certificate revocation.

While we understand that this requires effort on your part, we believe that this is the right step to help ensure the security of our products and retain the trust you have in us. Please know that we are doing our very best to minimize the impact to your business and to help ensure the protection of you and your customers.

This entry was posted in Backup & Recovery, Backup & Recovery (N-Central), Backup & Recovery (RMM), Backup & Recovery (Standalone), Backup & Recovery release notes, Backup & Recovery service updates, Mail Assure, MSP Anywhere, MSP Mail, MSP Mail release notes, MSP Mail service updates, MSP Manager, MSP Remote Monitoring & Management, MSP Remote Monitoring & Management release notes, MSP Remote Monitoring & Management service updates, MSP Service Desk, MSP Service Desk release notes, MSP Service Desk service updates, Passportal, Risk Intelligence, Risk Intelligence release notes, Risk Intelligence service updates, Security Notices, Solarwinds Take Control. Bookmark the permalink.