Sunburst avoided indicators of compromise with SolarWinds hack, but left breadcrumbs
To protect useful attack vectors through SolarWinds, Microsoft, and VMWare, the hackers made every effort not to reuse infrastructures or settings or to tie one stage of the attack to another.