SolarWinds and FireEye Breach – What TG Customers Need to Know

The FBI reported that cybersecurity firm SolarWinds and FireEye breach occurred on December 13th in this article.

In response to the breach, in which a highly-sophisticated adversary stole FireEye Red Team assessment tools used to test customer security, Thomas Guard is running a FireEye Red Team Countermeasure Scanner to detect indicators that FireEye’s stolen tools are being used, or have been used, on managed systems.

It is doubtful we will find any, but since FireEye has provided this at no fee, we are using the opportunity to do a deeper scan on all Thomas Guard managed devices.

This scan begins tonight after midnight and will continue until all Thomas Guard systems are scanned.

Also, as planned for the first week of December, we are continuing the retirement of the SolarWinds version of Thomas Guard (TG#2)  and the Datto version (TG#3) and replacing both with Comodo Dragon Endpoint for PC, Mac, Linux, Android, and iPhone.

This change is not related to the SolarWinds breach. The SolarWinds breach affects Orion-branded apps from SolarWinds, which are not used on PCs. You will see three new icons once the install is completed: a Red C for the Antivirus and AppGuard, the Guard for TG, and 3 white dots on a red plane when Remote Control by Itarian is running.

Questions?  Just text or call us.

If you wish to add antivirus protection to your Android phone, we can now offer that! Contact us today.
iPhone AV is not yet ready, but we will provide updates as that becomes available.