Issue
SolarWinds Security: SUPERNOVA is not malicious code embedded within the builds of our Orion® Platform as a supply chain attack. It is malware that is separately placed on a server that requires unauthorized access to a customer’s network and is designed to appear to be part of a SolarWinds product.
Additional Information
Nintex Security and Compliance Response:
"Nintex is not affected by FireEye Compromise.
Nintex leverages SolarWinds Orion Platform for internal corporate network monitoring only (not used in customer-facing cloud-based capabilities). The version used is not impacted by the current SolarWinds issue - https://www.solarwinds.com/securityadvisory
Nintex is proactively reaching out to our 3rd party providers. Based on the information from these providers, we are not aware of any impact from the SolarWinds Orion Platform issue to our customer-facing services."
- Kamal Pareek | Security and Compliance Manager