The United States’ cybersecurity agency says it has evidence of multiple ways in which a massive, months-long software supply chain attack might have infiltrated a wide range of public and private sector systems, in addition to known malware that infected software company SolarWinds. The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) released a statement Thursday updating their assessment of the recently uncovered cyber incident perpetrated by a yet unidentified adversary labeled simply as an “advanced persistent threat (APT) actor”.