SolarWinds Articles

Updated 2024-01-20 05:49zZ

Tools Techniques and Procedures in the attack (81 articles)

  1. SolarWinds Attackers Spotted Using New Tactics, Malware (tpost)
  2. The Microsoft paradox: Contributing to cyber threats and monetizing the cure (Fortune)
  3. Mandiant: SolarWinds Attackers Continue to Innovate
  4. SolarWinds hackers have been quietly targeting governments, cloud providers (scmedia)
  5. Russian Actors Behind SolarWinds Attack Hit Global Business & Government Targets
  6. Suspected Russian Activity Targeting Government and Business Entities Around the Globe (Mandiant)
  7. SolarWinds hackers kept busy in the year since the seminal hack, Mandiant finds
  8. Russian group behind SolarWinds incident ramping up hacking efforts, analysis says (hill)
  9. SolarWinds hackers have been quietly targeting governments, cloud providers (scmedia)
  10. SolarWinds hackers have a whole bag of new tricks for mass compromise attacks (ars)
  11. SolarWinds APT Targets Tech Resellers in Latest Supply-Chain Cyberattacks (tpost)
  12. How the SolarWinds Hack (almost) went Undetected
  13. (1293) SEC-T 0x0D: Erik Hjelmvik - Hiding in Plain Sight - How the SolarWinds Hack Went Undetected (YouTube)
  14. Mandia Alerted NSA on FireEye’s SolarWinds Breach
  15. APT focus: ‘Noisy’ Russian hacking crews are among the world’s most sophisticated (The Daily Swig)
  16. US, UK warn about Russia's brute force cyber campaign (Illinois News Today)
  17. 12 Lessons Learned From The SolarWinds Breach: RSA Conference
  18. To avoid insider threats, security strategies call for behavioral profiling and anomaly comparison | 2021-05-20 (Security Magazine)
  19. U.S., U.K. Reveal Code Flaws Abused by SolarWinds Hackers
  20. Joint advisory: Further TTPs associated with SVR cyber actors (NCSC.GOV.UK)
  21. US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal (SecuritNEWS)
  22. Further TTPs associated with SVR cyber actors
  23. Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders (CISA)
  24. 'Cock.li' Admin Says He's Not Surprised Russian Intelligence Uses His Site
  25. SolarWinds Attack Illustrates Evolving Russian Cyber Tactics
  26. Swiss Firm Says It Has Accessed Servers of a SolarWinds Hacker
  27. TTP Table for Detecting APT Activity Related to SolarWinds and Active Directory/M365 Compromise (Homeland Security Today)
  28. CISA: ‘Identity is everything’ for cyber defense post-SolarWinds (FRN)
  29. Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452
  30. The Anatomy of the SolarWinds Attack Chain
  31. SolarWinds fallout has enterprise CISOs on edge
  32. SolarWinds attack hit 100 companies and took months of planning, says White House (ZDNet)
  33. Targeting Process for the SolarWinds Backdoor (NETRESEC Blog)
  34. SolarWinds CEO: “SolarWinds Orion Development Program was Exploited by the Hackers” - E Hacking News (Latest Hacker News and IT Security News)
  35. This is How They Tell Me the World Ends
  36. The Next Cyberattack Is Already Under Way (The New Yorker)
  37. Microsoft: This is how the sneaky SolarWinds hackers hid their onward attacks for so long (ZDNet)
  38. Deep dive into the Solorigate second-stage activation: From SUNBURST to TEARDROP and Raindrop (MS Security)
  39. SolarWinds Hackers Access Malwarebytes’ Office 365 Emails
  40. SolarWinds Attack Underscores 'New Dimension' in ...
  41. Malwarebytes targeted by Nation State Actor implicated in SolarWinds breach. Evidence suggests abuse of privileged access to Microsoft Office 365 and Azure environments - Malwarebytes Labs (Malwarebytes Labs)
  42. Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452
  43. Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (fireeye)
  44. SolarWinds defense: How to stop similar attacks (ZDNet)
  45. SolarWinds Hackers’ Attack on Email Security Company Raises New Red Flags (WSJ)
  46. SolarWinds: How a Rare DGA Helped Attacker Communications Fly Under the Radar (Symantec Blogs)
  47. Q:CYBER spots lateral movement as used in the SolarWinds (Sunburst) calamity | State (insidenova.com)
  48. Cloud infrastructure is not immune from the SolarWinds Orion breach (Ermetic)
  49. Five Solution Providers Breached By SolarWinds Hackers: Researchers
  50. Massive data breach may have been discovered due to 'unforced error' by suspected Russian hackers (CNNPolitics)
  51. SolarWinds Campaign Focuses Attention on 'Golden ...
  52. Trump's reluctance to name Russia in SolarWinds hack will hamper recovery (Axios)
  53. After the FireEye and SolarWinds breaches, what’s your failsafe? (TechCrunch)
  54. CISA warns that SolarWinds software may not be only entry point in latest breaches - (GCN)
  55. SolarWinds/SUNBURST Backdoor, Third-Party and Supply Chain Security (secblvd)
  56. NSA on Authentication Hacks (Related to SolarWinds Breach) (Schneier)
  57. Microsoft says it found malicious software in its systems (CNA)
  58. Sunburst: connecting the dots in the DNS requests (Securelist)
  59. Sunburst's C2 Secrets Reveal Second-Stage SolarWinds Victims (tpost)
  60. Sygnia Advisory: Detection of Golden SAML attacks
  61. Five Russian hacks that transformed US cyber-security (BBC News)
  62. SolarWinds: UK assessing impact of hacking campaign (BBC News)
  63. Hackers last year conducted a 'dry run' of SolarWinds breach
  64. Microsoft president calls SolarWinds hack an “act of recklessness” (ars)
  65. More Hacking Attacks Found, Officials Warn of Risk to U.S. Government (nyt)
  66. Golden SAML: Newly Discovered Attack Technique Forges Authentication to Cloud Apps
  67. CISA: SolarWinds Not the Only Initial Attack Vector ...
  68. Exclusive-Suspected Russian hacking spree reached into Microsoft -sources (Reuters)
  69. Federal investigators find evidence of previously unknown tactics used to penetrate government networks (wapo)
  70. Trend data on the SolarWinds Orion compromise
  71. SolarWinds' dominance became a liability in sprawling spy campaign (VentureBeat)
  72. Thread by @megabeets_ on Thread Reader App (Thread Reader App)
  73. SunBurst: the next level of stealth
  74. What We Know (And Don’t) About The SolarWinds Orion Hack So Far
  75. SolarWinds hackers have a clever way to bypass multi-factor authentication (ars)
  76. SolarWinds Breach: An RSAC Interview with Dmitri Alperovitch About Who, How and Why (RSA)
  77. Dark Halo Leverages SolarWinds Compromise to Breach Organizations (Volexity)
  78. Global Intrusion Campaign Leverages Software Supply Chain Compromise (fireeye)
  79. US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor
  80. Important steps for customers to protect themselves from recent nation-state cyberattacks (Microsoft On the Issues)
  81. How to create a backdoor to Azure AD (part 1: Identity federation)