The SolarWinds assault was a typical supply chain attack. In these kinds of hacks, the attackers don’t go after their victims’ networks directly. Instead, they penetrate the system of a third-party supplier with access to their targets’ network assets. In this case, the third-party suppli...
Attacks like this have been termedsupply chain attacksand involve a threat actor compromising the supply chain of a third party, in this case, SolarWinds, and inserting malicious code into the third-parties product to compromise victims who use the product. Another example of such an attack was...
A group believed to be Russia's Cozy Bear gained access to government and other systems through a compromised update to SolarWinds' Orion software. Most organizations aren't prepared for this sort of software supply chain attack.
A second hacking group targets SolarWinds systems Hackers accessed Microsoft source code Microsoft quarantines trojanized apps Microsoft identifies 40+ victims, most in US Microsoft and industry partners seize key domain used in hack SEC filing: 18,000 customers impacted ...
At each event, SolarWinds CISO and Vice President, Security Tim Brown and GVP, Product Strategy Brandon Shopp will share lessons learned from SUNBURST, the largest supply chain attack in cyber history, and where SolarWinds is on its journey to becomingSecure by Design. They’ll share how IT...
Discover the intricacies of the SolarWinds Supply Chain Hack, a landmark cyberattack impacting major U.S. government agencies and industrial enterprises. Unravel its effects on IT and operational technology networks, and explore essential security strate
The financial sanctions specifically mention "malicious" cyber activities by Russian actors, including the SolarWinds cyber attack. The UK has also called out the attacks targeting SolarWinds, and is urging organisations to take note, with the National Cyber Security Centre (NCSC) assessing ...
The ongoing SolarWinds breach also shines a light on how dangerous a supply chain attack can be and gives infosec pros yet another reason to evaluate their security systems and processes. FireEye Inc. disclosed in December 2020, that suspected nation-state hackers had successfully carried out a ...
Microsoft warns hackers behind SolarWinds attack are targeting cloud services Oct. 25, 2021 at 4:18 p.m. ETby Associated Press TechnologyMicrosoft Says Russian Hackers Are at It Again. They Are Targeting the Tech Supply Chain. Oct. 25, 2021 at 7:22 a.m. ETby Barron's ...
Microsoft is now blocking the Sunburst backdoor used in the SolarWinds cyberattack that has claimed numerous victims worldwide. The Sunburst backdoor is a key feature of the ongoing supply-chain attack, and the release of a global malware signature should considerably reduce the threat. ...