SolarWinds/SUNBURST Backdoor, Third-Party and Supply Chain Security

SolarWinds/SUNBURST Backdoor, Third-Party and Supply Chain Security

In episode 152 for December 21st 2020: A discussion about the SolarWinds Orion backdoor, third-party security, and the threat of supply chain attacks with co-host Kevin Johnson. ** Links mentioned on the ...
Solorigate: SolarWinds Orion Compromise Overview

Solorigate: SolarWinds Orion Compromise Overview

On 13th December 2020, it came to light SolarWinds IT systems were compromised by hackers between March 2020 and June 2020. SolarWinds provides software to help organisations manage their IT networking infrastructure ...
FireEye Hack Turns into a Global Supply Chain Attack

FireEye Hack Turns into a Global Supply Chain Attack

The FireEye hack turned into a global supply chain attack affecting thousands of SolarWinds customers around the world. The post FireEye Hack Turns into a Global Supply Chain Attack appeared first on ...
Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as ...
SolarWinds Hack Could Affect 18K Customers

SolarWinds Hack Could Affect 18K Customers

The still-unfolding breach at network management software firm SolarWinds may have resulted in malicious code being pushed to nearly 18,000 customers, the company said in a legal filing on Monday. Meanwhile, Microsoft ...
Finding SUNBURST Backdoor with Zeek Logs & Corelight

Finding SUNBURST Backdoor with Zeek Logs & Corelight

John Gamble, Director of Product Marketing, Corelight FireEye’s threat research team has discovered a troubling new supply chain attack targeting SolarWind’s Orion IT monitoring and management platform. The attack trojanizes Orion software ...
Russia

SUNBURST: Russia Fingered in ‘Perfect 10’ Supply Chain Attack

Russian spies have been operating inside countless enterprises and government agencies, thanks to a hack of SolarWinds ...
Security Boulevard
Stolen Source Code, Apple Zero-Days, Biden's Privacy and Cybersecurity Policies

FireEye Hacked, Foxconn Ransomware Attack, Apple’s New Privacy Features

In episode 151 for December 14th 2020: What you need to know about the stolen FireEye “Red Team” tools and the FUD going on in the media about the attack, Foxconn gets ...
CipherCloud FireEye Architecture

Intelligence-Led Threat Protection for SaaS-Mobile Workforce

By Neeraj Nayak, Senior Manager, Product Marketing at CipherCloud Integrating FireEye Detection On Demand with CipherCloud CASB+ Platform As organizations turn to cloud apps to support the remote workforce and maintain business ...
A Deep Dive on the Recent Widespread DNS Hijacking Attacks

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge ...