Why the Sunburst Malware Was So Unique
                     WHY THE SUNBURST MALWARE WAS SO UNIQUE
…AND WHAT WE’VE LEARNT FROM IT
SUNBURST MALWARE
The SunBurst trojan was first reported on December 8th, 2020, and has been making 
headlines ever since. The Sunburst malware is significant both for its strategic and 
.highly developed malicious logic and for its many targeted high-profile victims
SUNBURST MALWARE
Reminiscent of the Duqu 2.0 nation-state attack in 2015, which successfully 
infiltrated Kaspersky, the sophistication of the Sunburst attack is indicative of a 
nation-state group that is sufficiently well-resourced to conduct the in-depth 
research and development that it would have necessitated. This is evident in the 
identification of Orion as a prime target to host a backdoor and the many other 
multiple evasion techniques that successfully avoided its detection for months in 
.2020
SUNBURST MALWARE
Orion, the SolarWinds product that was compromised, was used by about 33,000 
public and private sector customers, many of which were Fortune 500 companies 
and federal government agencies. This entailed the compromised data of many 
millions of their respective customers causing the event to be of wide public 
interest.
For additional information regarding sunburst malware contact Deepinstinct