About this site

Previous work

Projects

   

   

   

   

   

   

   

   

   

   

How to prevent attacks

Retrieved 2023-06-01

  • GitHub (mandiant/red_team_tool_countermeasures)

    • Retrieved 2022-02-08

  • Hacks Bring New Urgency to Moves by Congress and Agencies to Reduce Future Cybersecurity Risks (U.S. GAO)

    • Retrieved 2021-12-23

  • White House national security adviser asks software companies to discuss cybersecurity (Reuters)
  • White House national security adviser asks software companies to discuss cybersecurity
  • White House national security adviser asks software ...

    • Retrieved 2021-12-06

  • You can't stop the 'next SolarWinds' -- but you can slow it down (VentureBeat)
  • You can’t stop the ‘next SolarWinds’—but you can slow it down (Opera News)

    • Retrieved 2021-09-28

  • How one red team exercise averted a new SolarWinds (style attack)

    • Retrieved 2021-09-11

  • The imperative of the U.S. government’s Zero Trust measures (Digital Journal)

    • Retrieved 2021-08-30

  • Zero trust is not enough: The case for continuous control validation - (GCN)

    • Retrieved 2021-07-21

  • NIST Publishes 'Critical Software' Security Guidance

    • Retrieved 2021-06-22

  • SolarWinds Hackers Could Have Been Waylaid by Simple Countermeasure -US Officials - Latest Tweet by Reuters (LatestLY)
  • SolarWinds hackers may have been thwarted by simple security measures, officials say (Fuentitech)
  • SolarWinds hackers could have been waylaid by simple countermeasure – U.S. officials (102.5 Duke FM)
  • Could better cyber hygiene have prevented the SolarWinds attack?
  • Hillicon Valley: Cyber agency says SolarWinds hack could have been deterred | Civil rights groups urge lawmakers to crack down on Amazon's 'dangerous' worker surveillance (Manchin-led committee puts forth sprawling energy infrastructure proposal - The Ne)
  • Politics: Cyber agency says SolarWinds hack could have been deterred by simple security measures - PressFrom (US)
  • CISA: Firewall Rules Could Have Blunted SolarWinds Malware
  • CISA believes SolarWinds attack could have been prevented with simple countermeasures | 2021-06-23 (Security Magazine)
  • CISA: No organization in the public or private sector could’ve prevented SolarWinds breach (FRN)
  • CISA believes SolarWinds attack could have been prevented with simple countermeasures (Cyber Reports Cybersecurity News & Information)
  • Federal Agencies Could Have Neutralized SolarWinds Breach, CISA Says
  • Open Source Security: Google Has New Plans to Stop Software Supply Chain Attacks (Texas News Today)

    • Retrieved 2021-06-21

  • SolarWinds hackers could have been waylaid by simple countermeasure -US officials (Reuters)
  • Hillicon Valley: Cyber agency says SolarWinds hack could have been deterred | Civil rights groups urge lawmakers to crack down on Amazon's 'dangerous' worker surveillance | Manchin-led committee puts forth sprawling energy infrastructure proposal (TheHil)

    • Retrieved 2021-06-17

  • SolarWinds hackers could have been waylaid by simple countermeasure -US officials (National Post)

    • Retrieved 2021-06-10

  • We Already Know How to Stop SolarWinds (Like Hacks)

    • Retrieved 2021-06-01

  • Biden Warns Businesses of Increased Cybersecurity Threat

    • Retrieved 2021-05-26

  • US agencies lack supply chain best practices post (SolarWinds)
  • Microsoft has discovered yet more SolarWinds malware | #microsoft | #hacking (#cybersecurity - National Cyber Security News Today)

    • Retrieved 2021-05-25

  • DoJ, FBI, IC reviewing supply chain threats posed by Russian companies (FRN)

    • Retrieved 2021-05-20

  • How to Avoid Another Cybersecurity Disaster Like SolarWinds
  • CISA and NIST Guidance on Software Supply Chain Attacks

    • Retrieved 2021-05-16

  • National Cyber Defense Is a "Wicked" Problem: Why the Colonial Pipeline Ransomware Attack and the SolarWinds Hack Were All but Inevitable

    • Retrieved 2021-05-13

  • Bahamas must ‘step up game’ on cyber security (The Tribune)

    • Retrieved 2021-05-12

  • Supply chain penetration: Here’s how you can protect yourself (HT Tech)
  • Russia must do more to tackle cyber criminals operating from within its borders, says UK (ZDNet)

    • Retrieved 2021-05-11

  • RSAC insights: SolarWinds hack illustrates why software builds need scrutiny — at deployment (secblvd)

    • Retrieved 2021-05-05

  • NYDFS recommends critical new practices to reduce supply chain risk in wake of SolarWinds attack (Lexology)

    • Retrieved 2021-05-03

  • Stopping the Next SolarWinds Requires Doing ...

    • Retrieved 2021-04-28

  • CISA & NIST Publish Recommendations for IT Admins to Defend Against the Next ‘SolarWinds’ Event (HOTforSecurity)
  • NSA: OT Security Guidance in Wake of SolarWinds Attack
  • Tips on Enhancing Supply Chain Security (DataBreachToday)

    • Retrieved 2021-04-23

  • When a Ripple Becomes a Wave: Cyberattack Fallout (secblvd)

    • Retrieved 2021-04-22

  • U.S. takes steps to protect electric system from cyberattacks (Chattanooga Times Free Press)
  • USA: Would CMMC have prevented SolarWinds? | Insights (DataGuidance)

    • Retrieved 2021-04-21

  • New cyber (hardening mandates may be coming for defense firms)
  • SUNBURST: Reflections to Secure By (secblvd)

    • Retrieved 2021-04-16

  • NATO to improve cyber defense in bid to boost alliance resilience
  • H-ISAC Supply (Chain Insights Aim to Prevent Next SolarWinds Cyberattack)

    • Retrieved 2021-04-14

  • Misuse of X.509 Certificates & Keys Involved in SolarWinds Attack

    • Retrieved 2021-04-13

  • STRATEGIC THREAT INTELLIGENCE: PREPARING FOR THE NEXT “SOLARWINDS” EVENT

    • Retrieved 2021-04-09

  • The U.S. Government Needs to Overhaul Cybersecurity. Here’s How. (Lawfare)
  • What the Titans of Industry Reveal about SolarWinds Attack (secblvd)

    • Retrieved 2021-04-08

  • 4 things you can do to minimize cyberattacks on supply and value chains (Help Net Security)

    • Retrieved 2021-04-06

  • Viewpoint: Preventing the next SolarWinds breach calls for rapid training and education (Baltimore Business Journal)

    • Retrieved 2021-04-01

  • Analysts expect the worst if Biden doesn't turn his focus toward protecting the grid (WCTI)
  • Biden's cyber executive order to include new rules for federal agencies, contractors
  • Homeland Security Orders Cyber ‘Sprints’ as Part of U.S. Plan Against Hacks
  • The Cybersecurity 202: DHS head seeks to quickly solve some major cybersecurity problems (wapo)
  • US looks to keep critical sectors safe from cyberattacks | Election Hq (fox5vegas.com)

    • Retrieved 2021-03-31

  • Revelations About Securing Hybrid Cloud Environments Post-SolarWinds (secblvd)
  • U.S. Launches Cyber ‘Sprints’ in the Wake of Nation-State Hacks (Bloomberg)
  • Mayorkas pledges to modernize US cyber-defenses after their failure to detect alleged Russian spies (CyberScoop)

    • Retrieved 2021-03-29

  • DHS Secretary Outlines 60 (Day Cybersecurity Recovery Plan)

    • Retrieved 2021-03-27

  • Opinion (The United States has a major hole in its cyberdefense. Here’s how to fix it. - The Washington Post)

    • Retrieved 2021-03-26

  • SolarWinds CEO: Here’s What We’re Doing to Prevent Another Attack (SDxCentral)

    • Retrieved 2021-03-25

  • What Lessons Should We Learn From The Suspected Russian Hack Of SolarWinds And Other U.S. Agencies And Companies?

    • Retrieved 2021-03-23

  • US Response to SolarWinds Cyber Penetrations: A Good Defense Is the Best Offense (Russia Matters)

    • Retrieved 2021-03-17

  • Feds aren't well prepared to spot SolarWinds-style hacks at agencies, CISA official says (CyberScoop)
  • Why the SolarWinds Attack Easily Slipped by All EDR/EPP Solutions (secblvd)

    • Retrieved 2021-03-16

  • For US cyber defense, helpful hackers are only half the battle (hill)

    • Retrieved 2021-03-15

  • The US must adopt Software Bill of Materials to thwart cyberattacks (hill)

    • Retrieved 2021-03-10

  • NCP (National Checklist Program Repository)
  • White House Cyber Group Discusses How to Stop Another SolarWinds

    • Retrieved 2021-03-03

  • SolarWinds Senate Hearing: Moving Forward It’s All About Zero Trust (secblvd)

    • Retrieved 2021-03-02

  • How to prevent data leaks

    • Retrieved 2021-03-01

  • Cloud (based dev teams must shift security left to avoid fate of SolarWinds)

    • Retrieved 2021-02-26

  • Microsoft could've prevented some SolarWinds damage (IT Security Guru)

    • Retrieved 2021-02-25

  • How to Avoid Falling Victim to a SolarWinds (Style ...)
  • Assessing Fallout from the SolarWinds Breach (eWEEK)

    • Retrieved 2021-02-24

  • Guest post: Kurt Sanger on “The ‘SolarWinds’ Hack and the Need to Reframe U.S. Cybersecurity Information Sharing” (Lawfire)

    • Retrieved 2021-02-23

  • Network security relies on careful scrutiny
  • Paramount Defenses Opens Online Store to Empower Organizations Worldwide
  • Palo Alto Networks Posts First $1 Billion Sales Quarter (DCN)

    • Retrieved 2021-02-18

  • What financial services should learn from the SolarWinds cyber attack
  • Apiiro Releases Industry’s First Solution That Detects and Prevents the Attack Used Against Solarwinds

    • Retrieved 2021-02-08

  • A Key Step in Preventing a Future SolarWinds (Just Security)

    • Retrieved 2021-02-02

  • The U.S. Spent $2.2 Million on a Cybersecurity System That Wasn’t Implemented — and Might Have Stopped a Major Hack — ProPublica

    • Retrieved 2021-01-27

  • Tips to harden Active Directory against SolarWinds-type attacks (CSO Online)

    • Retrieved 2021-01-19

  • Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (fireeye)
  • Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452

    • Retrieved 2021-01-06

  • How to prepare for and respond to a SolarWinds-type attack (CSO Online)

    • Retrieved 2021-01-01

  • Gossamer: Supply Chain Security for Open (Source Software)

    • Retrieved 2020-12-28

  • Using Microsoft 365 Defender to protect against Solorigate (MS Security)

    • Retrieved 2020-12-23

  • SolarWinds roundup: Fixes, new bad actors, and what the company knew (Network World)

    • Retrieved 2020-12-22

  • How SolarWinds could’ve been prevented (FRN)

    • Retrieved 2020-12-21

  • The SolarWinds Sunburst Attack: How to Protect Yourself from 5th Generation Cyberattacks (Secure Ops)

    • Retrieved 2020-12-18

  • Analyzing Solorigate, the compromised DLL file that started a sophisticated cyberattack, and how Microsoft Defender helps protect customers (MS Security)

    • Retrieved 2020-12-16

  • FireEye, Microsoft create kill switch for SolarWinds backdoor

    • Retrieved 2020-12-15

  • New, free tool adds layer of security for the software supply chain

    • Retrieved 2020-12-14

  • Catching Bloodhound Before it Bites (CrowdStrike)
  • Quick Thoughts on the Russia Hack (Lawfare)

    • Retrieved 2020-12-13

  • SolarWinds CyberAttack and FireEye Red Team Tools Coverage

    • Retrieved 2020-12-08

  • Unauthorized Access of FireEye Red Team Tools (Mandiant)

    • Retrieved 2020-09-25

  • Commit Virtual 2020: How to Build a Compromise Resilient CI/CD (YouTube)

    • Retrieved 2020-06-03

  • Secure Publication of Datadog Agent Integrations With TUF and In-Toto (Datadog)

    • Retrieved 2020-01-09

  • Why Solarwinds Hack didn't succeed for Comodo Customers? Post

    • Retrieved 2019-08-19

  • in-toto: Providing farm-to (table guarantees for bits and bytes)

    • Retrieved 2019-05-07

  • U.S. Cyber Command Bolsters Allied Defenses to Impose Cost on Moscow (nyt)

    • Contents copyright Ciexinc.com 2024; All rights reserved
    Cookie policy: This site neither sets nor collects cookies.
    blog1.2.5/pb1.2.7