Top news of the week: 25.12.2020.
Mitre Attack
Advice for incident responders on recovery from systemic identity compromises
Customers across the globe are asking for guidance on recovering their infrastructure after being impacted by Solorigate. DART walks you through remediation steps as well as some longer ...
6 board of directors security concerns every CISO should be prepared to address
The COVID pandemic and spike in cybercriminal activity has raised interest in security among corporate boards. These are the concerns and questions CISOs say they are now hearing from them.
Hacked Networks Will Need to be Burned 'Down to the Ground'
Experts say it’s going to take months to kick elite hackers widely believed to be Russian out of U.S. government networks, after a complex supply chain attack allowed access to thousands of ...
Trump Downplays Russia in First Comments on Cyberattack
Contradicting his secretary of state and other top officials, President Donald Trump suggested without evidence that China — not Russia — may be behind recent cyberattacks against the ...
SolarWinds Campaign Focuses Attention on 'Golden SAML' Attack Vector
Adversaries that successfully execute attack can achieve persistent anytime, anywhere access to a victim network, security researchers say.
Emotet Campaign Restarts After Seven-Week Hiatus
Multiple security researchers note the return of an email campaign attempting to spread the malware, which is often used to drop the Ryuk ransomware and Trickbot banking Trojan.
Cybereason vs. SolarWinds Supply Chain Attack
On December 13, 2020, IT infrastructure management provider SolarWinds issued a Security Advisory regarding their SolarWinds Orion Platform after experiencing a “highly sophisticated” ...
The Strategic Implications of SolarWinds
The infiltration by Russia emphasizes the importance of implementing the layered deterrence strategy recommended by the U.S. Cyber Solarium Commission.