SolarWinds Articles
Updated 2024-01-20 05:49zZ
Drilldown: Detailed, low-level analysis of malware and TTP (93 articles)
-
Phylum Discovers Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply (Chain Attack)
-
EETimes (SolarWinds Fallout: When Will Breach Reporting Become Mandatory?)
-
A Year After the SolarWinds Hack, Supply Chain Threats Still Loom (WIRED)
-
Biden to Sign Cyber Security Executive Order (nyt)
-
SolarWinds Identifies, Patches Critical Vulnerability in Serv-U (My TechDecisions)
-
4 key takeaways from Biden’s Executive Order on cybersecurity (secblvd)
-
Lawmaker, Tech Companies Clash on Software Transparency Requirements (Nextgov)
-
Government-mandated SBOMs to throw light on software supply chain security (CSO Online)
-
Software bills of materials (SBOM) could help improve cybersecurity (CNX Software)
-
Biden’s executive order on cybersecurity should include behavior transparency (TechCrunch)
-
Google’s latest framework aims to prevent SolarWinds (like supply chain attacks)
-
Google dishes out homemade SLSA, a recipe to thwart software supply (chain attacks • The Register)
-
Binary Authorization for Borg: how Google verifies code provenance and implements code identity
-
Open-source security: Google has a new plan to stop software supply chain attacks (ZDNet)
-
How LF communities enable security measures required by the US Executive Order on Cybersecurity (Linux Foundation)
-
Poisoned Installers Found in SolarWinds Hackers Toolkit (Flizzyy News)
-
Russian SolarWinds Hacker Launches New Phishing Campaign-Security (Illinois News Today)
-
Federal Register :: Software Bill of Materials Elements and Considerations
-
CrowdStrike breaks down 'Golden SAML' attack
-
12 Lessons Learned From The SolarWinds Breach: RSA Conference
-
To avoid insider threats, security strategies call for behavioral profiling and anomaly comparison | 2021-05-20 (Security Magazine)
-
Linux and open-source communities rise to Biden's cybersecurity challenge (ZDNet)
-
US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal (SecuritNEWS)
-
Fact Sheet: Russian SVR Activities Related to SolarWinds Compromise
-
Further TTPs associated with SVR cyber actors
-
Survey Finds Broad Concern Over Third (Party App ...)
-
The Ticking Time Bomb in Every Company's Code
-
DOD Zero Trust Reference Architecture
-
Another SolarWinds lesson: Hackers are targeting Microsoft authentication servers (The Open Security)
-
Dark Reading | Security (Protect The Business)
-
An APT Group Exploits VPN to Deploy Supernova on SolarWinds Orion (Cyware Alerts - Hacker News)
-
Abusing Replication: Stealing AD FS Secrets Over the Network (fireeye)
-
Well (known VPN used to steal credentials on SolarWinds servers)
-
Another top VPN is reportedly being used to spread SolarWinds hack (TechRadar)
-
SolarWinds hack and security - What is a software bill of materials? (JAXenter)
-
CISA warns of theft of credentials via SolarWinds and PulseSecure VPN
-
CISA warns of credential theft via SolarWinds and PulseSecure VPN (Public News)
-
CISA warns of credential theft via SolarWinds and PulseSecure VPN (VentureBeat)
-
Microsoft in the hot seat due to SolarWinds hacking campaign (Compsmag)
-
SolarWinds hacking campaign puts Microsoft in the hot seat (Columbia Basin Herald)
-
SUPERNOVA malware discovered on SolarWinds Orion server (Malware Devil)
-
Supernova Attack Leveraged SolarWinds, Pulse Secure
-
SolarWinds hacking campaign puts Microsoft in the hot seat
-
Hackers exploit SolarWinds, Pulse Secure for credential theft: Feds - Security (CRN Australia)
-
Analysts Uncover More Servers Used in SolarWinds Attack
-
Supernova Attack Leveraged SolarWinds, Pulse Secure
-
Hackers Exploit VPN to Deploy SUPERNOVA malware on SolarWinds Orion (IT Security News)
-
APT abused Pulse Secure, SolarWinds appliances to plant Supernova webshell on enterprise network
-
New analysis uncovers extensive SolarWinds attack infrastructure (TechRadar)
-
Researchers Find New Chunk of SolarWinds Attackers' Infrastructure (Decipher)
-
CISA Finds New Attacker Using Supernova Malware on SolarWinds Orion (Decipher)
-
CISA Discovers Advanced Malware In VPN Device (Potomac Officers Club)
-
Hackers Exploit VPN to Deploy SUPERNOVA malware on SolarWinds Orion
-
Russian Cyber Threat Defense – Now and Looking Forward (secblvd)
-
Researchers shed more light on APT29 activity during SolarWinds attack
-
CISA Identifies SUPERNOVA Malware During Incident Response (CISA)
-
Research Uncovers New Command Servers Used in SolarWinds Campaign (Zero Day)
-
SolarWinds: Advancing the Story (RiskIQ Community Edition)
-
SolarWinds: Illuminating the Hidden Patterns That Advance the Story (RiskIQ)
-
Exploring three more serious flaws in SolarWinds Orion products (TechNative)
-
Supply chain risk: Addressing a multitude of single points of failure - (FCW)
-
Malware Wants to Phone Home. Trinity Cyber Doesn’t Try to Block It
-
MAR-10327841-1.v1 – SUNSHUTTLE (CISA)
-
Fireeyye - [Report] M (Trends 2021)
-
What We Know (and Don't Know) So Far About the ...
-
In wake of giant software hacks, defenders & dev teams must fix AppSec
-
iTWire (SolarWinds speaks out, and software dev can never be the same again)
-
SolarWinds hack: the mystery of one of the biggest cyberattacks ever (CyberNews)
-
SolarWinds CEO: Here’s What We’re Doing to Prevent Another Attack (SDxCentral)
-
Exclusive: Software vendors would have to disclose breaches to U.S. government users under new order: draft (Reuters)
-
Swiss cybersecurity firm says it accessed servers of SolarWinds hacking group (The Bharat Express News)
-
Swiss Cyber Security Firm Says It Accessed Servers of a SolarWinds Hacking Group
-
Swiss Firm Says It Accessed SolarWinds Attackers' Servers
-
Swiss Cybersecurity Firm says it Accessed Servers of a SolarWinds Hacker
-
Researchers discover threat actors with links to SolarWinds hack (IT PRO)
-
Swiss firm says it has accessed servers of a SolarWinds hacker that attacked 4,700 targets, Tech News News & Top Stories (The Straits Times)
-
SolarWinds explainer
-
Swiss Firm Says It Has Accessed Servers of a SolarWinds Hacker (Bloomberg)
-
SilverFish Group Threat Actor Report
-
Mimecast confirms hackers behind SolarWinds supply chain attack accessed limited amount of customer information (The Daily Swig)
-
The US must adopt Software Bill of Materials to thwart cyberattacks (hill)
-
NTIA Software Component Transparency (National Telecommunications and Information Administration)
-
Microsoft Releases Free Tool for Hunting SolarWinds ...
-
The Anatomy of the SolarWinds Attack Chain (secblvd)
-
Orion SDK - The Orion Platform (THWACK)
-
CyberArk Labs: The Anatomy of the SolarWinds Attack (Techwire)
-
Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (fireeye)
-
SolarWinds Cyber (Attack Affects Developers and Contractors)
-
Preventing Supply Chain Attacks like SolarWinds (Linux Foundation)
-
Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations (CISA)
-
Dark Halo Leverages SolarWinds Compromise to Breach Organizations (Volexity)
-
cyber.dhs.gov - Emergency Directive 21 (01)
-
Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor (fireeye)