Attivo Networks News

SolarWinds Tag

SolarWinds cyber strike: Russia did it, say US and UK

Reading Time: < 1 minute  |  Published: April 16, 2021 in Industry News
0 Comments

The US and UK have officially attributed the SolarWinds cyber attack which affected 18,000 organisations globally to Russia’s Foreign Intelligence Service (Sluzhba Vneshney Razvedki, the SVR). In a joint advisory, the NSA, FBI and Cybersecurity & Infrastructure Security Agency (CISA) said SVR actors – known among...

Defense in Depth – Filling the Gaps to Detect and Stop Lateral Movement

Reading Time: < 1 minute  |  Published: February 25, 2021 in
0 Comments

During the SolarWinds breach, attackers had a back door into potentially thousands of networks. Typical security controls focus on detecting the initial compromise but seldom the lateral movement and privilege escalation activities that attackers spend most of their time executing. Join us for a discussion where...

What is deception technology

Reading Time: 4 minutes  |  Published: January 28, 2021 in Industry News
0 Comments

Deception technology, commonly referred to as cyber deception, is a category of security tools and techniques designed to detect and divert an attacker’s lateral movement once they are inside the network. Deception technology enables defenders to identify a wide variety of attack methods without relying on known...

The SolarWinds Attack: How to Address Lateral Movement On-Demand Webinar

Reading Time: < 1 minute  |  Published: January 1, 2021 in
0 Comments

Joseph Salazar, Technical Marketing Manager | Attivo Networks 22 mins The SolarWinds supply chain breach garnered much attention and concern, especially for potentially vulnerable organizations. While the compromise method was novel, analysis indicates that the attackers used typical in-network attack activities, such as credential theft, privilege escalation,...

SolarWinds Supply Chain Attack: Automating Incident Response to Detect Lateral Movement

Reading Time: 4 minutes  |  Published: December 15, 2020 in Blogs, Cyber Breach, Uncategorized
0 Comments

Author: Attivo Research Team - SolarWinds issued an advisory on 13 December 2020 informing users of a sophisticated attack on its Orion Platform, an application that monitors and manages IT environments. FireEye analyzed the SolarWinds Orion Platform code compromise (dubbed SUNBURST) and shared further post-analysis details...