The SolarWinds cyber attack has been explained from the perspective of the vendors affected, but here’s a look at its process, lifecycle, and global impact. How SolarWinds Attack Was Carried Out The SolarWinds assault was a typical supply chain attack. In these kinds of hacks, the attackers...
This week’s cybersecurity news has been dominated by one event, the SolarWinds supply chain attack. On Sunday, the Washington Post published anarticledetailing who is possibly behind the attack. The sentiment was echoed in a New York Timesarticlepublished on the same day. While the finger-poi...
A group believed to be Russia's Cozy Bear gained access to government and other systems through a compromised update to SolarWinds' Orion software. Most organizations aren't prepared for this sort of software supply chain attack.
We refer to this asa supply chain attack, which is the introduction of malware into a trusted piece of software that organizations are likely to use due to the trust placed in the vendor. We can speculate that the threat actors likely had a great degree network access and took their time ...
A second hacking group targets SolarWinds systems Hackers accessed Microsoft source code Microsoft quarantines trojanized apps Microsoft identifies 40+ victims, most in US Microsoft and industry partners seize key domain used in hack SEC filing: 18,000 customers impacted ...
How to Limit the Scope and Damage of Software Supply Chain Attacks. I'm going to assume you already know at least something about the SolarWinds attack. If not, read my postThe Biggest Security Breach Ever. Let me start by pointing out that the title of the webinar is a bit of a bai...
This is called a supply-chain attack, because it targets a supplier to an organization rather than an organization itself—and can affect all of a supplier’s customers. It’s an increasingly common way to attack networks. Other examples of this sort of attack includefake appsin the Google ...
Hackers working for the Russian foreign intelligence service are behind the SolarWinds attack, cyber-espionage campaigns targeting COVID-19 research facilities and more, according to the United States and the United Kingdom. The US accusation comes in a joint advisory by the National Secu...
Discover the intricacies of the SolarWinds Supply Chain Hack, a landmark cyberattack impacting major U.S. government agencies and industrial enterprises. Unravel its effects on IT and operational technology networks, and explore essential security strate
The ongoing SolarWinds breach also shines a light on how dangerous a supply chain attack can be and gives infosec pros yet another reason to evaluate their security systems and processes. FireEye Inc. disclosed in December 2020, that suspected nation-state hackers had successfully carried out a ...