TIBCO takes its security responsibilities very seriously. This page provides information about TIBCO security and how customers or security researchers can contact TIBCO to report or ask about a security issue.
Security@TIBCO
Public Notice
Solarwinds Customer Notice
18 March 2021
Dear Customer,
Most of you have heard SolarWinds, a network monitoring and management ISV, has experienced a highly sophisticated, manual supply chain attack on it's SolarWinds® Orion® Platform. On 13 December 2020 SolarWinds published an announcement stating that their Orion Platform had been tainted with malware. The affected versions were Orion update versions 2019.4 through 2020.2.1, released between March 2020 and June 2020.
TIBCO immediately launched an investigation into its use of the SolarWinds® Orion® Platform. Our investigation has determined that no affected versions of the SolarWinds® Orion® Platform are in use at TIBCO.
TIBCO completed the acquisition of Information Builders (IBI) on 05 January 2021. TIBCO has confirmed that IBI does not currently, nor has it ever used the SolarWinds® Orion® Platform. Therefore IBI was not impacted by the SolarWinds vulnerabilities and malware pre or post acquisition.
If you have any questions, please open a case with TIBCO Support and reference "SolarWinds".