We present top cyber security incidents, breaches and risks reported recently with recommendation to #mitigate the #risks.

The aim is to orchestrate important news & events and provide valuable recommendation and guidance for individuals and corporate in order to make #cyberspace a safer and better place for everyone.

"Zero Trust is not a product. It is a philosophy and a model." - Zoe Lindsey

Follow us on Social media:
Twitter account:- www.twitter.com/whitehatguru
Facebook page:- [ Ссылка ]
Quora: [ Ссылка ]

-- NEWS REFERRED IN THIS DIGEST --:
SolarWinds Hack concluded as one of the biggest targeted attack against US Govt. & it’s agencies which has also impacted the private companies.
FireEye, a cyber security firm, initially discovered this global supply chain attack which weaponized the software update associated with SolarWinds Orion in order to distribute a backdoor known as SUNBURST.
Once the update is downloaded, the #backdoor lies dormant for 12 to 14 days and post that, it runs in the environment where it can stay in stealth mode without getting detected.
Backdoor uses multiple blocklists to identify #forensic and anti-virus tools running as processes, services, and drivers. Backdoor has the ability to execute files, transfer files, profile the system, reboot the machine, and disable system services.
According to SolarWinds, more than 18,000 customers might be the potential victim; further as per FireEye update, 50 of the 18,000 organizations confirmed to has installed malicious SolarWinds Orion code into their network were “genuinely impacted” by the campaign.
As per the report, attack also compromised Microsoft 365 accounts of SolarWinds.
Later, 11 days after revealing this major breach, SolarWinds has updated its flagship Orion software.
#CrowdStrike in one report mentioned that #Sunburst hack also tried to breach its systems earlier this year, firm said it was alerted by Microsoft on 15th December where attempt of attack was failed.
That is it for now about SolarWinds hack, research continues and more to come on the modus operandi of this hack.

-- NEWS SOURCES --

[ Ссылка ]

|| If you have any grievance, query, concern, questions, feedback in relation to this News Bytes then feel free to reach-out to us via contact[at]whitehatguru.net ||

свернуть