This was no SolarWinds, but a good reminder that all supply chain incidents aren't just broad, loud smash and grab operations. Like SolarWinds this operation leveraged broad access to discreetly select targets for follow-on operations. (2/x)

— John Hultquist (@JohnHultquist) December 15, 2022