Microsoft has released an alert describing a sophisticated email-based campaign that NOBELIUM has been operating to help users and administrators understand and protect from this latest activity (Microsoft identifies NOBELIUM as the threat actor responsible for the SolarWinds Orion platform compromise). In its alert, Microsoft outlines attacker motives, malicious behavior, and best practices to protect against this attack. It has also posted additional information to its Microsoft On The Issues blog and notes that since this is an active incident it will post more details as they become available.