In December 2020, the SolarWinds attack made big headlines, when hackers were able to use its software distribution system to infect customer networks. This month, the security firm Malwarebytes revealed it was compromised by the same group, which compromised at least a dozen US government agencies and private companies.

 According to an article by Dan Goodin in Ars Technica, investigators have found that the hackers had access to some internal company emails and “no evidence of unauthorized access or compromise in any Malwarebytes production environments.” However, that doesn’t mean that the attack was inconsequential.