'Understanding the Solarwinds Sunburst Breach and the Severity of Supply Chain Attacks' by CheckPointSW checkpoint cybersecurity
Understanding the attack
So how was the attack constructed and executed by the threat actors? What we currently know shows that it involved top-tier cyber-capabilities and must have been months, if not years, in the making. How SolarWinds’ networks were first breached is still being investigated, but oneis that the initial phase involved hacking the company’s Office 365 accounts.
What makes the SolarWinds hack particularly dangerous is that it leveraged cloud-based services to orchestrate a supply-chain attack. Because access to those services was obtained via authentication systems based on already-compromised networks, the attackers were able to breach companies’ defences without raising any alarms. The current trend toward cloud migration and digital transformation sees countless businesses adopting a hybrid approach that combines cloud-based and on-premise networks.
The SolarWinds hack is designed to exploit this hybrid vector perfectly, meaning that a huge number of businesses globally are potentially vulnerable. Check Point first predicted these types of multi-vector, fast-moving, large-scale Gen V attacks two years ago, and they are hitting organizations globally more frequently than ever before.
Organizations also need to deploy defense-in-depth, ensuring that multiple protections operate in harmony to identify and prevent different attack vectors in real-time, such as blocking command and control traffic as well as exploits of vulnerable elements.
日本 最新ニュース, 日本 見出し
Similar News:他のニュース ソースから収集した、これに似たニュース記事を読むこともできます。
A New Linux Tool Aims to Guard Against Supply Chain AttacksSecurity firm Chainguard has created a simple, open-source way for organizations to defend the cloud against some of the most insidious attacks.
続きを読む »
Thrilled to be Recognized as the 2021 HackerNoon Contributor of the Year - React | HackerNoonHow does it feel to be a winner of Noonies 2021 as the React.js Contributor? Fantastic. Read how we intend to keep the title, our goals for 2022, and more.
続きを読む »
Ford shuffles management, seeks new global supply chain head | AutoblogFord is restructuring vehicle development and supply chain, shuffling executives days after saying it would build up to 45,000 vehicles with parts missing.
続きを読む »
Target plans to hire 100K seasonal workersThe retailer announced plans to hire 100,000 seasonal workers. The employees will be spread out across stores and supply chain facilities, the company said.
続きを読む »
Why Is Fashion Still Sleeping on All-Natural Dyes?The pigments stem from Earth-friendly materials, are supply chain-ready and do wonders to eliminate wastewater. So why isn't every manufacturer using them?
続きを読む »