solarwinds-hack
Behind The Breach: Microsoft Breach by Russian Hackers
On 12 January 2024, Microsoft disclosed a critical breach carried out by Russian state-sponsored group, Midnight Blizzard. The threat actor used a password-spraying attack to gain unauthorized access to Microsoft Corporation’s Office ...
SolarWinds & Accellion Breaches: Supply Chain Attacks Wreaking Havoc
When it comes to cyber security, it’s not possible to pinpoint the biggest threat against organizations globally. However, supply chain attacks are doing their best to earn that honor. In a supply ...
Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?
On Aug. 13, 2020, someone uploaded a suspected malicious file to VirusTotal, a service that scans submitted files against more than five dozen antivirus and security products. Last month, Microsoft and FireEye ...
#Solorigate : SUPERNOVA forensics using Code Property Graph
#Solorigate : SUPERNOVA forensics using Code Property GraphThe fallout of SolarWinds compromise has resulted in a bevy of new malware families, each with different characteristics and behaviors.SolarWinds advisory : https://www.solarwinds.com/securityadvisory#anchor2In this post, we will focus ...
A Month of Reckoning for SaaS software creators and consumers
An illustration of transitive and deeply connected software supply chainsThe U.S. was caught off guard by foreign interference in the 2016 election. Given the powerful role of social media in political contests, understanding ...
SolarWinds SUNBRUST backdoor investigation using ShiftLeft’s Code Property Graph
If you’ve arrived to this post, I’d suggest reading the Part-1 and Part-2 to gain context.FireEye released additional details here (on December 24th, 2020) that is well worth reading.With the increase of complexity in ...