Official: SolarWinds policy response focusing on IT upgrades, info-sharing, software security initiatives

Officials are three weeks into a four-week remediation and strategic review following the SolarWinds-related penetration of federal networks, according to a senior administration official, and are moving on broad cybersecurity policy fronts to address gaps in technology and software security, and in info-sharing between government and industry.

“The compromised agencies all were tasked to do a particular set of activities and then were tasked to have an independent review of their work to ensure that we felt confident the adversary...