Vendor involved in SolarWinds declined to share info, former CISA head says

Updated as of: 11 February 2021
Former US Cybersecurity and Infrastructure Security Agency director Chris Krebs has told Congress that a contractor involved in the SolarWinds hack declined to disclose information about the breach – illustrating how public contractual confidentiality requirements can block investigations into large-scale breaches.