Microsoft Shares CodeQL Queries to Scan for Malicious Implants Matching SolarWinds Supply Chain Attack
To make sure the attackers did not modify their code, Microsoft created CodeQL queries that were used to scan their codebase for malicious implants matching the SolarWinds IOCs.