SolarWinds Orion Compromise

On 13 December 2021 Twilio was made aware of a security advisory about Solarwinds Orion. At the time, this software was at the center of recent news about state sponsored hacking against the United States Government and other private sector targets. While Twilio does use the Orion product in a limited capacity within our environments, we have found no evidence of system compromise with our installation. At the time Twilio became aware of the issue we were running Orion version 2020.2 which has been identified as an impacted version. In response to this advisory we immediately disabled the Orion server and started the process of rebuilding it from a new base install. At the time of awareness, Twilio expected no impact had been made to our services or customers as a result of these activities.

Have more questions? Submit a request