CSO spoke with Tim Brown, SolarWinds CISO and vice president of security, about how this incident has changed the company’s approach to security. Brown is responsible for both product and internal security. How has your role changed since the attack? Prior to the attack, I didn...
A cyber attack is any malicious attempt to gain unauthorized access to a computer, computing system or computer network with the intent to cause damage. Cyber attacks aim to disable, disrupt, destroy or control computer systems or to alter, block, delete, manipulate or steal the data held with...
What is a Replay Attack - A replay attack is a type of network assault in which an attacker discovers and fraudulently delays or repeats a data transaction. The sender or a hostile actor intercepts the data and retransmits it, causing the data transfer t
The SolarWinds attack proved that threats to IT monitoring systems that have privileged access to IT systems and system performance data can be devastating. Identity infrastructure attacks. Threats that target identity infrastructures can compromise an entire environment. Circumvention of security controls....
SolarWinds Logo, return to the Home page. Products Solutions Resources Quote Resources What Is Advanced Persistent Threat? What Is Advanced Persistent Threat? Advanced persistent threat (APT) is a planned, stealthy cyberattack that allows attackers to penetrate a company's network and stay inside fo...
Unfortunately,malicious code writers also use these methodsto prevent their attack mechanisms from being detected byantimalwaretools. The 2020 SolarWinds attack is an example of hackers using obfuscation to evade defenses. Deobfuscation techniques can be used to reverse engineer -- or undo -- obfuscat...
The colossal scale of the ongoing offensive against Microsoft's email servers also eclipses theSolarWinds hacking spreethat came to light last December, which is said to have targeted as many as 18,000 customers of the IT management tools provider. But as it was with the SolarWinds hack, th...
SolarWinds, 2020 TheSolarWinds attackwas orchestrated by injecting a backdoor, known as SUNBURST, into the Orion IT update tool. The backdoor had been downloaded by 18,000 customers. ASUS, 2018 The attack on ASUS,according to Symantec researchers, took advantage of an update feature and impact...
The fact that it got hit at all is worrisome. Other vendors hit by the Solar Winds attackers include Microsoft and Malwarebytes, another security vendor. “Considering the supply chain nature of the SolarWinds attack, and in an abundance of caution, we immediately performed ...
One of the most publicized hacks was the SolarWinds supply chain attack. An investigation was undertaken todetermine the attack vectors, but the breach may have been the result of compromised credentials or possible access through the development environment for SolarWinds' Orion IT management software...