To achieve cyber resilience and recovery, you first must understand what your assets are. Step 1: Build cyber resilience & recovery There are proactive measures you can take today to help you quickly and comprehensively respond to, remediate and recover from a third-party or digital supply chain breach. So if you cannot predict a third-party security breach like SolarWinds, and you can’t prevent a sophisticated breach being carried out by a seasoned cybercriminal or terrorist nation-state, what can you do to protect your assets? In fact, even a tool whose purpose is to detect malware would not have been able to flag Orion as suspicious, since it was legitimate software.
#INTERVIEW QUESTIONS ON SOLARWINDS MONITORING TOOL SOFTWARE#
How is that even possible? It turns out that the perpetrators painstakingly planned and prepared for this attack by carefully packaging their malware inside Orion, a trusted piece of software, allowing easy, unnoticed entry into thousands of systems during a standard software update. Microsoft is just one of 18,000 businesses and government agencies that unknowingly enabled hackers to enter their systems when they installed the compromised SolarWinds monitoring software.
“I think from a software engineering perspective, it’s probably fair to say that this is the greatest and most sophisticated attack the world has ever seen,” said Microsoft Corporation’s president, Brad Smith, during a “60 Minutes” interview. It was the work of highly sophisticated state-sponsored actors, making it impossible to recognize that the target software had even been compromised. The attack on SolarWinds was not one of an amateur. Could the SolarWinds breach have been prevented? Having said that, one way to possibly foresee potential third-party breaches is to look for degrading security posture of organizations over time, which can be a tell-tale clue that something is amiss. software company like SolarWinds could be the victim of a massive third-party vendor breach like this, we can easily anticipate many third-party breaches as a result of APTs or other stealthy threats in the future.
Needless to say, while we couldn’t predict a major U.S. In fact, it was so subtle that it managed to stay under the radar and remain undetected for at least nine months. Since the SolarWinds breach began as an Advanced Persistent Threat (APT), it essentially acted as a tailor-made sophisticated threat inflicted on an internal tool that was considered to be a legitimate piece of software. Thanks for subscribing! Could the SolarWinds breach have been predicted?
0 kommentar(er)
