SolarWinds MSP Corrects RMM Software Bug In EMEA

SolarWinds MSP has corrected an RMM (remote monitoring and management) software bug that erroneously sent some customer information to a limited number of MSPs in EMEA (Europe, Middle East, Africa). ChannelE2E reached out to SolarWinds MSP for comment on what happened. Here's a synopsis.

ChannelE2E: What Went Wrong?

SolarWindsMSP: On March 2, 2017, SolarWinds MSP released a software update to its RMM product. A bug in the RMM EMEA dashboards in this software update created dashboard-generated emails that included limited customer information to a small set of MSPs/VARs not affiliated with those accounts. This dashboard functionality was promptly disabled, and the propagation of these dashboard-generated emails stopped at approximately 0900 am CETT time on March 2, 2017.

ChannelE2E: How many MSPs were impacted?

SolarWinds MSP: There were a small number of impacted distributors and MSPs/VARs, mostly limited to EMEA and to specific geographies within those regions. An official email was sent to all known impacted distributors and MSPs/VARs on March 2, 2017, and ongoing communication continues.

ChannelE2E: What corrective action was taken?

SolarWinds MSP: The dashboard functionality was promptly disabled. SolarWinds MSP has taken appropriate measures to remediate the impact and to prevent future recurrence including reviewing its current processes and procedures to see how and where the company can improve, hiring additional developers, introducing additional safety checks and setting up an engineering team solely focused on product quality.

Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.