Anti-malware software company Malwarebytes company itself is a victim of the SolarWinds attack, the company announced this week. In a blog, CEO Marcin Kleczynski said the company has evidence of another intrusion vector that works by abusing applications with privileged access to Microsoft Office 365 and Azure environments. Attackers gained access to a limited subset […]
Cybersecurity firm Symantec has uncovered an additional piece of malware used in the SolarWinds attacks, becoming the fourth piece of malware associated with the wide-ranging compromise of the popular IT management software. Symantec is calling this malware “Raindrop,” which is “a loader that delivers a payload of Cobalt Strike,” the company wrote in a blog […]
IT leaders need to do more to protect themselves from future supply chain attacks like the SolarWinds compromise, according to the Linux Foundation. In a new blog, David Wheeler, the Foundation’s open source supply chain security director, went through how the attack went undiscovered until months after the suspected Russian state-sponsored actors compromised the SolarWinds […]
In a new blog, SolarWinds’ CEO laid out what it is doing to respond to the compromise of its Orion IT management platform and what it knows so far about the attack. As many cybersecurity and IT experts have been saying, SolarWinds’ CEO Sudhakar Ramakrishna called the attack – which the company codenames Sunburst – […]
In a bid to repair its image and solve its recent cybersecurity issues, IT management software provider SolarWinds has hired former U.S. Cybersecurity and Infrastructure Agency (CISA) Director Chris Krebs and former Facebook security executive Alex Stamos. First reported by the Financial Times, SolarWinds is one of the first customers of the Krebs Stamos Group, […]
Add the Department of Justice to the growing list of organizations victimized by the SolarWinds hack, as the department confirmed Wednesday that it learned internal email accounts were compromised on Dec. 24. According to a brief statement from the department, its Office of the Chief Information Officer learned on Christmas Eve of “previously unknown malicious […]
Details of the SolarWinds hack been unfolding for a few weeks now, and more recently, Microsoft has announced that the hackers have viewed the company’s internal source code. The company previously disclosed that it has found malicious SolarWinds applications in its environment that were isolated and removed, and there is no evidence to date that […]
Microsoft and other security researchers has discovered additional malware that also affects the SolarWinds Orion platform, the company posted in a security blog late Friday. The news came just days after security researchers disclosed a massive hacking campaign utilizing the same IT management software from SolarWinds that so far has impacted several high-profile U.S. government […]
According to Microsoft, it has identified more than 40 victims of the wide-ranging SolarWinds Orion supply chain compromise that were breached further by hackers believed to be backed by a foreign state-backed entity. In a blog post, Microsoft said 44% of the 40-plus entities that were further breached by hackers in the large-scale attack are […]
The U.S. Cybersecurity and Infrastructure Agency (CISA) is aware of other attack methods on the IT supply chain in addition to known malware that infected SolarWinds’ Orion IT management platform. In an alert issued Thursday, the agency said it “has evidence of additional initial access vectors, other than the SolarWinds Orion platform; however these are […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!
