Security news that informs and inspires

Archive

18 results for tag Solarwinds:

Ingredient List Only Part of the Recipe to Fix Supply Chain Security

The requirement for vendors to provide a software bill of materials for the apps they sell to federal agencies will only address part of the supply chain risk, experts say.

Government, Software Security, Solarwinds

SolarWinds: A Harbinger For a National Data Breach Reporting Law

The disclosure of the SolarWinds attack by FireEye is encouraging for the development of a national data breach reporting law, government and private-sector experts say.

Rsa2021, Solarwinds, Data Breach Notification

Attackers Focused on SolarWinds Network as Early as January 2019

The APT29 attackers who targeted SolarWinds were doing reconnaissance on the company's network as early as January 2019.

Solarwinds

Researchers Find New Chunk of SolarWinds Attackers’ Infrastructure

Researchers from RiskIQ have identified 18 additional C2 servers used by the APT29 attackers in their operation against SolarWinds and its customers.

Solarwinds

CISA Finds New Attacker Using Supernova Malware on SolarWinds Orion

CISA investigated an enterprise intrusion in which the attacker had legitimate credentials for the Pulse Secure VPN and then deployed the Supernova malware on a SolarWinds Orion instance.

Solarwinds, Cisa