Look for any podcast host, guest or anyone
Showing episodes and shows of

SolarWinds

Shows

Global Truth Desk
Global Truth DeskHow a Software Update Became a Cyber Weapon | SolarWinds Hack ExplainedWhat if the most dangerous cyberattack
👉 came through a trusted update?In 2020, attackers linked to👉 APT29executed one of the most sophisticated cyber-espionage operations ever.They didn’t hack companies directly.👉 They hacked the software supply chain.The target:👉 SolarWindsTheir Orion software was used by:GovernmentsFortune 500 companiesCritical infrastructureAttackers inserted a backdoor called SUNBURST into a normal update.That update was:Digitally signedFully trustedInstalled by 18,000+ organizationsThe malware:Slept for 12–14 days đŸ’€Blended with normal trafficAvoided antivi...
2026-04-2219 minSolarWinds TechPod
SolarWinds TechPodUnlocking the Power of SolarWinds Through TrainingIn this SolarWinds TechPod episode, hosts Chrystal Taylor and Sean Sebring talk with Cheryl Nomanson, a SolarWinds Academy trainer with 14 years at the company. They discuss the importance of technical education for complex software and networks, exploring SolarWinds' comprehensive training offerings including the SolarWinds Academy with its on-demand courses, instructor-led virtual classes, and office hours format. Cheryl explains the SolarWinds Certified Professional (SCP) certification program and the newer SolarWinds Certified Instructor (SCI) program for training partners globally. The conversation covers different learning formats, comparing virtual versus in-person instruction challenges and benefits, the importance of customer feedback in developing training...
2026-03-1042 minHR Voices
HR VoicesDavid Hanrahan, SVP People Success at SolarwindsScaling Through Change: SolarWinds’ People Leader on Functional HRBPs, Sales Talent, and AI-Driven PerformanceSummaryWhat does it take to steer a 25-year-old tech company through going private while raising the performance bar? David Hanrahan, SVP of People Success at SolarWinds, shares how his team is navigating culture integration with a data-driven parent company, reorganizing HR for impact, and using AI to modernize performance. With 2,100+ employees and deep tenure across the business, SolarWinds is balancing “what’s worked” with a sharper go-to-market focus. David explains why he shifted HRBPs fr...
2026-02-1823 minNeural Newscast
Neural NewscastSolarWinds WHD Unauth RCE: Why CISA KEV Means Patch Now [Prime Cyber Insights]CISA has placed SolarWinds Web Help Desk CVE-2025-40551 (CVSS 9.8) into the Known Exploited Vulnerabilities catalog, confirming active exploitation and making patching a near-term operational requirement. SolarWinds has released fixes in Web Help Desk 2026.1, and defenders should immediately identify exposed instances, upgrade, and validate that no attacker gained unauthenticated remote code execution. We also cover CISA’s additional KEV entries affecting Sangoma FreePBX and a GitLab SSRF, plus what Microsoft’s move to build Sysmon functionality into Windows could mean for improving telemetry and detection without extra tooling overhead.Topics Covered⚠ CISA KEV update: what “ac...
2026-02-0403 minSolarWinds TechPod
SolarWinds TechPodIT Trends and Predictions for 2026SolarWinds TechPod returns with its annual IT trends and predictions episode — and 2026 is all about Agentic AI. In this episode of SolarWinds TechPod, hosts Sean Sebring and Chrystal Taylor are joined by Sascha Giese (SolarWinds) and Lauren Okruch (SolarWinds Product Marketing) to break down how AI, ITSM, automation, governance, and resilience will shape IT operations in 2026. As a leader in IT management, observability, and IT service management, SolarWinds offers a unique perspective on how Agentic AI is moving IT from automation to autonomous action — and what that means for governance, security, and the evolving role of IT teams. To...
2026-01-131h 01KriseKompasset
KriseKompassetCybermakt | E 4 av 5: Systemisk Risiko – Fra SolarWinds til Stortinget (Kapittel 14)Velkommen til Episode 4 av Cybermakt Serien! Denne episoden, basert pĂ„ Kapittel 14 i boken, dykker ned i to av de mest sofistikerte og systemisk alvorlige cyberoperasjonene i nyere tid: SolarWinds Orion og Microsoft Exchange. Disse angrepene synliggjorde den globale trusselen fra avanserte, statssponsede aktĂžrer (APT-er) og avslĂžrte fundamentale svakheter i kritisk infrastruktur og styring.Vi undersĂžker hvordan disse hendelsene skapte systemisk risiko ved Ă„ utnytte sĂ„rbarheter i sentrale, utbredte kommersielle plattformer.I denne episoden fĂ„r du en grundig gjennomgang av:SolarWinds-angrepet: Forklaring av metoden leverandĂžrkjedeangrep (Supply Chain At...
2025-11-2320 minSolarWinds TechPod
SolarWinds TechPodSolarWinds Reveals Next-Gen AIIn this special mini episode of SolarWinds TechPod, hosts Chrystal Taylor and Sean Sebring sit down again with Matai Wilson to unpack the latest AI innovations announced during SolarWinds Day. Discover how SolarWinds is building the future of autonomous IT operations, from proactive remediation and Root Cause Assist (RCA) to an Agentic Framework that will transform how IT pros interact with systems.
2025-10-1410 minSANS Internet Storm Center\'s Daily Network Security News Podcast
SANS Internet Storm Center's Daily Network Security News PodcastSANS Stormcast Wednesday, September 24th, 2025: DoS against the Analyst; GitHub Improvements; Solarwinds and Supermicro BMC vulnerabilities (#)SANS Stormcast Wednesday, September 24th, 2025: DoS against the Analyst; GitHub Improvements; Solarwinds and Supermicro BMC vulnerabilities Distracting the Analyst for Fun and Profit Our undergraduate intern, Tyler House analyzed what may have been a small DoS attack that was likely more meant to distract than to actually cause a denial of service https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Distracting%20the%20Analyst%20for%20Fun%20and%20Profit/32308 GitHub's plan for a more secure npm supply chain GitHub outlined its plan to harden the supply chain, in particular in light of the recent attack against npm packages https://github.blog/security...
2025-09-2407 minSANS Internet Storm Center\'s Daily Network Security News Podcast
SANS Internet Storm Center's Daily Network Security News PodcastSANS Stormcast Wednesday, September 24th, 2025: DoS against the Analyst; GitHub Improvements; Solarwinds and Supermicro BMC vulnerabilities (#)SANS Stormcast Wednesday, September 24th, 2025: DoS against the Analyst; GitHub Improvements; Solarwinds and Supermicro BMC vulnerabilities Distracting the Analyst for Fun and Profit Our undergraduate intern, Tyler House analyzed what may have been a small DoS attack that was likely more meant to distract than to actually cause a denial of service https://isc.sans.edu/diary/%5BGuest%20Diary%5D%20Distracting%20the%20Analyst%20for%20Fun%20and%20Profit/32308 GitHub's plan for a more secure npm supply chain GitHub outlined its plan to harden the supply chain, in particular in light of the recent attack against npm packages https://github.blog/security...
2025-09-2407 minCISO TradecraftÂź
CISO TradecraftÂź#246 - Tim Brown on SolarWinds: What Every CISO Should KnowIn this episode of the CISO Tradecraft podcast, host G Mark Hardy speaks with Tim Brown, the CISO of SolarWinds, at the Black Hat conference in Las Vegas. They delve into the details of the infamous SolarWinds breach, discussing the timeline of events, the involvement of the Russian SVR, and the immediate and long-term responses by SolarWinds. Tim shares insights on the complexities of supply chain security, the importance of clear communication within an organization, and the evolving regulatory landscape for CISOs. Additionally, they discuss the personal and professional ramifications of dealing with such a high-profile incident, offering valuable...
2025-08-1844 minCISO TradecraftÂź
CISO TradecraftÂź#246 - Tim Brown on SolarWinds: What Every CISO Should KnowIn this episode of the CISO Tradecraft podcast, host G Mark Hardy speaks with Tim Brown, the CISO of SolarWinds, at the Black Hat conference in Las Vegas. They delve into the details of the infamous SolarWinds breach, discussing the timeline of events, the involvement of the Russian SVR, and the immediate and long-term responses by SolarWinds. Tim shares insights on the complexities of supply chain security, the importance of clear communication within an organization, and the evolving regulatory landscape for CISOs. Additionally, they discuss the personal and professional ramifications of dealing with such a high-profile incident, offering valuable...
2025-08-1844 minDeep Dive
Deep DiveđŸŽ™ïžÂ The SolarWinds Breach PodcastÂ đŸŒđŸ”“đŸŽ™ïžÂ Welcome to The SolarWinds Breach Podcast 🌐🔓 Dive deep into one of the most significant cybersecurity incidents of our time—the SolarWinds Data Breach. This podcast unravels the complex web of events, explores the tactics used by threat actors, and sheds light on the global impact of this unprecedented cyberattack. From expert interviews and technical breakdowns to the lessons learned by organizations worldwide, The SolarWinds Breach Podcast is your guide to understanding how one breach changed the cybersecurity landscape forever. 🔑 Stay informed. Stay vigilant. Tune in to The SolarWinds Breach Podcast.
2025-01-0618 minMarketing Today with Alan Hart
Marketing Today with Alan Hart449: Cybersecurity and the New CMO Profile with Brian Goldfarb, CMO of SolarWindsBrian Goldfarb is the Senior Vice President and Chief Marketing Officer at SolarWinds. After earning his A.B. in Computer Science and Economics from Duke University, Brian initially explored a career on Wall Street but soon transitioned to product management at Microsoft, marking the start of his two-decade journey in the tech industry. At Google, Brian played a key role in launching the Cloud Platform. He later led platform marketing at Salesforce, and before joining SolarWinds, he served as CMO at both Splunk and Tenable. Now, after nearly a year with SolarWinds, Brian oversees the company’s global marketing st...
2024-12-1141 minCorruption Crime & Compliance
Corruption Crime & ComplianceSEC Suffers Dismissal of Claims in Solarwinds Securities Fraud CaseA New York federal district judge handed down a significant decision dismissing much of the SEC's securities fraud enforcement action against SolarWinds arising from its claims relating to SolarWinds' cybersecurity policies and disclosure of a significant cyberattack against the SolarWinds' network. In this episode of Corruption, Crime, and Compliance, Michael Volkov discusses the significant dismissal of most of the SEC's securities fraud claims against SolarWinds by a New York federal district court. The case highlights the ongoing challenges in balancing cybersecurity disclosures with regulatory requirements, and the implications this ruling might have for future SEC enforcement actions.ï»ż...
2024-08-1912 minProduct Leader\'s Journey
Product Leader's JourneySudhakar Ramakrishna, CEO SolarWinds - Aligning purpose, portfolio, priorities, valueSudhakar Ramakrishna became CEO of SolarWinds at a very pivotal moment in the company's history, just as it became the target of a cyberattack that affected not just SolarWinds but its large base of enterprise and government customers. Since then, Sudhakar and the people at SolarWinds have led a remarkable turnaround. We are going to learn about how they did that. Before coming to SolarWinds, Sudhakar's journey has taken him from engineering and product leadership as well as GM, President and CEO roles at companies such as 3Com, Motorola, Polycom, Citrix, Pulse Secure. We cover many important topics in...
2024-07-1641 minSoundside
SoundsideWhistleblower says Microsoft was warned ahead of SolarWinds hackMicrosoft continues to face tough questions about its security protocols and commitment to safety after a whistleblower says he warned the company about a serious vulnerability involving third party software years ahead of it being exploited in the infamous SolarWinds attack. Experts believe that it was in September of 2019 that Russian hackers gained access to SolarWinds - a network infrastructure monitoring software relied on by hundreds of thousands of computer systems across the country. By inserting malware in a SolarWinds update, hackers got a backdoor to those systems, including Microsoft and its customers: the largest...
2024-06-1714 minCyberWire Daily
CyberWire DailySolarWinds and the SEC.Rick Howard, N2K’s CSO and The CyberWire’s Chief Analyst and Senior Fellow, presents the argument for why the SEC was misguided when it charged the SolarWinds CISO, Tim Brown, with fraud the after the Russian SVR compromised the SolarWinds flagship product, Orion. Our guests are, Steve Winterfeld, Akamai’s Advisory CISO, and Ted Wagner, SAP National Security Services CISO.References:Andrew Goldstein, Josef Ansorge, Matt Nguyen, Robert Deniston, 2024. Fatal Flaws in SEC’s Amended Complaint Against SolarWinds [Analysis]. Crime & Corruption. Anna-Louise Jackson, 2023. Earnings Reports: What Do Quarterly Earnings Tell You? [Explaine...
2024-06-0321 minIMDaily - Innovate Marketing Daily
IMDaily - Innovate Marketing DailySolarWinds Names Brian Goldfarb Chief Marketing OfficerSolarWinds Names Brian Goldfarb Chief Marketing OfficerFormer Marketing Executive at Tenable, Splunk, and Google to Oversee Global Marketing Efforts of World-Class Observability, Database, and Service Management Solution Provider“We are excited to welcome Brian as the newest member of the SolarWinds team, not only because of his track record in driving substantial, sustained growth but because he shares our vision and commitment to enriching the lives of customers,” said Sudhakar Ramakrishna, President and Chief Executive Officer, SolarWinds. “I am confident the experience and expertise he brings will play a pivotal role in shaping and growing our bu...
2024-01-3006 minRazorwire Cyber Security & InfoSec Insights
Razorwire Cyber Security & InfoSec InsightsSolarWinds’ CISO Under SEC Scrutiny: The Impact On The Infosec CommunityWelcome to Razorwire, the podcast where we cut through the noise to bring you incisive discussions on all things cybersecurity. I'm your host, Jim, and in today's episode, we delve into the SEC charges against SolarWinds CISO, a case that has sent shockwaves through the infosec community.In this episode, our guests Iain Pye and Chris Dawson discuss the hype surrounding the trial, its impact on the infosec community, and the potential consequences for all Chief Information Security Officers (CISOs). We also explore the uncertainties surrounding the CISO's responsibilities and actions within the organisation regarding a...
2023-12-061h 07The Daily Threat
The Daily ThreatCybersecurity Crisis Unveiled: SolarWinds Lawsuit, Elektra Leak, & Dallas County Attack!Welcome to The Daily Threat - your source for the latest in cybersecurity news. In today’s episode, we dive deep into three critical cyber incidents:US Sues SolarWinds Over Court Records - Uncover the lawsuit that exposes the fallout from the SolarWinds supply chain attack. Watch here: https://www.reuters.com/legal/us-sues-solarwinds-court-records-2023-10-30/Elektra Leak Cryptojacking Attacks - Learn how hackers exploited a vulnerability in Elektra software for cryptojacking. Watch here: https://thehackernews.com/2023/10/elektra-leak-cryptojacking-attacks.htmlCyber Attack on Dallas County - Explore the cyber assault that disrupted vital government services. Wa...
2023-12-0104 minThe Other Side Of The Firewall
The Other Side Of The FirewallTBT - New Rules Post-SolarWinds BreachIn this week's Throw Back Thursday episode from September 19, 2022 (Season 1 Episode 270), Ryan, Shannon, and LeVon discuss the government's new requirements for self-attestation after the SolarWinds breach. Please LISTEN 🎧 LIKE 👍🏿 and SHARE ❀ Thanks!Article: White House releases post-SolarWinds federal software security requirementshttps://federalnewsnetwork.com/cybersecurity/2022/09/white-house-releases-post-solarwinds-federal-software-security-requirements/Socials:Website - https://www.heroesmediagroup.com/shows/the-other-side-of-the-firewall/Audio - https://podcasts.apple.com/us/podcast/the-other-side-of-the-firewall/id1542479181YouTube - https://www.youtube.com/channel/UCXZgdDvlcQ8bP_V4dEF02YwRyan on Twitter, Link...
2023-11-0910 minThe Other Side Of The Firewall
The Other Side Of The FirewallSEC Sues Solarwinds CISO For Non-DisclosureIn this episode, Ryan and Shannon discuss our thoughts on the Security and Exchange Commission (SEC) adding the Solarwinds CISO to their suite for misleading investors by not disclosing the company's security posture. Please LISTEN 🎧 LIKE 👍🏿 and SHARE ❀ Thanks!Article: SEC sues SolarWinds and its CISO for fraudulent cybersecurity disclosureshttps://www.csoonline.com/article/657599/sec-sues-solarwinds-and-its-ciso-for-fraudulent-cybersecurity-disclosures.html?fbclid=IwAR1rNT5Y4JymKhDOR_sAAknvqr4-xfXO0o-xUutWF7skNrFCfUg79wic98ISocials:Website - https://www.heroesmediagroup.com/shows/the-other-side-of-the-firewall/Audio - https://podcasts.apple.com/us/podcast/th...
2023-11-0814 minRock the Prototype - Softwareentwicklung & Prototyping
Rock the Prototype - Softwareentwicklung & PrototypingFolge 12 - SolarWinds Hack: Der unsichtbare CyberdiebstahlSoftwareentwicklung im Kontext der Cyber-Sicherheit & Schutz vor Hackern und Cybercrime SolarWinds Hack: Der unsichtbare Cyberdiebstahl Softwareentwicklung im Kontext der Cyber-Sicherheit & Schutz vor Hackern und Cybercrime ❇ BegrĂŒĂŸung und kurze EinfĂŒhrung in das Thema. ❇ SolarWinds Hack – Die bekannten Fakten im Überblick: ❇ ErlĂ€uterung der Ereignisse rund um den SolarWinds Hack. Zeitstrahl der wichtigsten Entdeckungen und Veröffentlichungen. Wer steckt hinter dem SolarWinds Hack? ❇ Diskussion ĂŒber die mutmaßlichen Angreifer und ihre Motive. Einblick in die Ermittlungen und die aktuelle Lage. Wie wurde der Cyberhack entdeckt? ❇ Die Geschichte hinter der Aufdeckung des Hacks. Die Rolle der IT-S...
2023-11-0828 minHacker And The Fed
Hacker And The FedThe SolarWinds hack, North Korea IT Workers, Hackers Targeting a Data Company, and Listener QuestionsThis week on Hacker And The Fed we break down the SolarWinds hack, there are 8 new vulnerabilities found in SolarWinds, thousands of remote IT workers have been working for North Korea, hackers are targeting a company that handles data requests for law enforcement, and we answer listener questions about VPN services, password managers and patch management.Links from the episode: Critical SolarWinds RCE Bugs Enable Unauthorized Network Takeoverhttps://www.darkreading.com/vulnerabilities-threats/critical-solarwinds-rce-bugs-enable-unauthorized-network-takeover Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program, FBI...
2023-10-261h 25The Cybersecurity Defenders Podcast
The Cybersecurity Defenders Podcast#45 - Hacker History: SolarWindsIn this episode of The Cybersecurity Defenders Podcast, we recount some hacker history, and with the help of John Bambenek, tell the story of one of the largest and most complicated supply chain attacks in history: SolarWinds On December 13, 2020, The Washington Post reported that multiple government agencies were breached through SolarWinds's Orion software.Victims of this attack include the cybersecurity firm FireEye, the US Treasury Department, the US Department of Commerce's National Telecommunications and Information Administration, as well as the US Department of Homeland Security.Prominent international SolarWinds customers investigating whether they were impacted include...
2023-06-2820 minFuture of Application Security
Future of Application SecurityEP 17 — SolarWinds VP of Security Tim Brown: Behind the Scenes of the 2020 SolarWinds BreachThose in IT, DevOps, and SecOps are all too familiar with the demands of a complex and dynamic technological landscape. For more than two decades, SolarWinds has helped technology professionals and organizations manage and adapt to an ever-expanding ecosystem of IT applications and infrastructure.  In this episode, Tim Brown, Vice President of Security at SolarWinds, gives us an insider view of the 2020 cyberattack where hackers slipped malicious code into the company's popular network management system and software program, Orion.  He shares how his team worked tirelessly to resolve the breach, and how this incident  has brought light to...
2022-11-3034 minTalos Takes
Talos TakesTalos Takes Ep. #39: An update on SolarWinds as it relates to IoT and OTWe know we just talked about supply chain attacks and SolarWinds last week, but it’s still all anyone in security is talking about. Joe Marshall joins the show this time to approach the SolarWinds breach from an internet-of-things and operational security perspective. He recently co-wrote a blog for Cisco detailing how outsourcing OT over the past few years has made the SolarWinds compromise worse. Joe, a lifelong researcher and security practitioner in the OT and infrastructure space, discusses what we still don’t know about this attack, what you should do if you think you may be affected, and how...
2022-08-1212 minTalos Takes
Talos TakesTalos Takes Ep. #44: A super-sized edition for a roundtable discussion on SolarWindsWelcome to the first-ever XL edition of Talos Takes. This one is a little longer than usual, but we promise you it’s worth it. We recently brought together researchers from all corners of Talos to talk about what we know about SolarWinds so far, and what’s still to be discovered. Our various teams have spent the past several months diving deep into the SolarWinds supply chain attack, and this is a collection of Talos’ knowledge on the current situation. Talking points include whether it’s fair to refer to this campaign as “SolarWinds,” what other initial infection vectors there may be...
2022-08-1234 minTalos Takes
Talos TakesTalos Takes Ep. #39: An update on SolarWinds as it relates to IoT and OTWe know we just talked about supply chain attacks and SolarWinds last week, but it’s still all anyone in security is talking about. Joe Marshall joins the show this time to approach the SolarWinds breach from an internet-of-things and operational security perspective. He recently co-wrote a blog for Cisco detailing how outsourcing OT over the past few years has made the SolarWinds compromise worse. Joe, a lifelong researcher and security practitioner in the OT and infrastructure space, discusses what we still don’t know about this attack, what you should do if you think you may be affected, and how...
2022-08-1212 minSolarWinds TechPod
SolarWinds TechPodTHWACKcamp: Celebrating 10 Years of IT LearningJoin SolarWinds Technical Content Manager for Community, Kevin M. Sparenberg, and Head Geek, Chrystal Taylor, as they reminisce on the 10-year history of SolarWinds virtual event, THWACKcamp. Whether you’re curious about the type of content you can expect at this year’s event or simply want to join them on memory lane, this TechPod will answer the question: Why THWACKcamp?  Join the SolarWinds community, THWACK, in celebrating 10 years of THWACKcamp – the always free and completely virtual event for IT pros hoping to learn something new.  © 2022 SolarWinds Worldwide, LLC. All rights reserved.
2022-02-1550 minSolarWinds TechPod
SolarWinds TechPodSolarWinds Tech Predictions for 2022: Data Governance and Risk AversionJoin our Head Geeks in Part 2 of our 2022 Tech Predictions TechPod series where they share their thoughts on the rise of Chief Data Officers and data governance principles, risk aversion, and the need for tech pros to fine-tune nontechnical skill sets for career advancement.  This podcast is provided for informational purposes only. © 2022 SolarWinds Worldwide, LLC. All rights reserved.
2022-01-2546 minSolarWinds TechPod
SolarWinds TechPodSolarWinds Tech Predictions for 2022: ObservabilityIt's a new year, ripe with new trends and technology. Join our Head Geeks as they dive into their 2022 Tech Predictions, beginning with observability – a term becoming prevalent among tech pros. Listen in as they share how cloud investments; the rise of AI/ML services; and the re-evaluation of tools, technology, and processes are driving the observability conversation.  This podcast is provided for informational purposes only. © 2022 SolarWinds Worldwide, LLC. All rights reserved.
2022-01-1129 minChannelPro Weekly Podcast
ChannelPro Weekly PodcastIconic IT, Ingram Micro, Pulseway, N-able, SolarWinds, Managed Services, Cloud Computing, RMM, Social Media Marketing, Videos, Podcasts, ChannelPro WeeklyDon’t settle for the small fries, people. Real entrepreneurs, like this week’s guest host, Sitima Fowler of Iconic IT, put in the work to enjoy a large fries lifestyle. You’ll hear all about it on this week’s show, too, along with what she, Matt, and Rich have to say about Ingram Micro’s cloud revenue management tool, Pulseway’s automated self-serve client portal, best practices for social media marketing, and building profitable cloud service bundles. That’s followed by a conversation with John Pagliuca, president and CEO of N-able, about what that company’s recent spinoff...
2021-08-271h 54UNSECURITY: Information Security Podcast
UNSECURITY: Information Security PodcastUNSECURITY Episode 144: PDEIS, SolarWinds Lawsuit, Industry NewsIn this episode, Evan and Brad focus on the concept of PDEIS (Programmatic Distributed Empowerment of Information Security) and its ability to involve and empower others within the organization; not just CISOs, to make their own risk decisions. They also debate the trend of information security leaders facing legal repercussions in the wake of the recent SolarWinds incident. As always, they close with some industry updates such as the T-Mobile breach, and more. Give episode 144 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com Please like and subscribe!
2021-08-191h 03Sven Ruppert
Sven RuppertSolarWinds hack and the Executive Order from Mr Biden — And now?In the past two years, we have had to learn a lot about cybersecurity. The new attack vectors are becoming more and more sophisticated and are directed more and more against the value chain in general. But what does that mean for us? What can be done about it, and what reactions have the state already taken? Let's start with the story that got all of this rolling and made sure that the general attention was drawn to the vulnerabilities of the available IT infrastructure. We're talking about the SolarWinds Hack. What happened here, and what is...
2021-07-2711 minSolarWinds TechPod
SolarWinds TechPodSecure by Design | The CISO PerspectiveCDW Technology Vice President and Chief Information Security Officer Ruben Chacon, SolarWindsÂź CISO and VP, Security Tim Brown, and SolarWinds Head Geekℱ Thomas LaRock talk about what CISO need to know to face today’s escalating cybersecurity threats – and what it’s like to be in the “hot seat” when challenges inevitably arise.  This podcast is provided for informational purposes only. © 2021 SolarWinds Worldwide, LLC. All rights reserved.
2021-06-2947 minZurĂŒck zur Zukunft - Tech-News und Business Models
ZurĂŒck zur Zukunft - Tech-News und Business Models#121 | SolarWinds-Hacker sind zurĂŒck, Klarna-Panne, Netflix & Gaming, Wefox-Funding und PoparazziIn dieser Folge von ZurĂŒck zur Zukunft sprechen Agnieszka und Alexander ĂŒber das Thema Cybersecurity, nachdem seitens Microsoft vor einem erneuten Angriff von Nobelium, den SolarWinds-Hackern, gewarnt wurde. Zudem geht es um das Mega-Funding beim Berliner Insurtech Wefox, die Datenpanne bei Klarna, wie es eigentlich um das Apple Car steht, wie sich der Zusammenhang von Elon Musk, ESG und der jĂŒngste Krypto-Crash erklĂ€ren lĂ€sst, ĂŒber die interessanten Fragen der Richterin an Tim Cook beim Epic v. Apple-Prozess, warum Netflix sich bei Games versuchen will, was der Kauf von MGM fĂŒr Amazon bedeutet, was es mit der Hyp...
2021-06-0153 minSolarWinds TechPod
SolarWinds TechPodSecure by Design | Securing the Supply ChainThe recent SUNBURST cyberattack reveals new threats to the supply chains fueling today’s businesses. SolarWinds¼ and FireEye have raised the alarm for leaders everywhere to reexamine their security, to prepare for threats, and to raise the standards of the supply chains on which they rely.  Join this episode of TechPod for a compelling discussion between SolarWinds President and CEO Sudhakar Ramakrishna and FireEye CEO and Board Director Kevin Mandia, hosted by SolarWinds Head Geekℱ Thomas LaRock. These leaders will share their unique insight into how organizations around the world should be thinking about securing their supply chains from hig...
2021-04-0736 minYou\'ve Already Been Hacked
You've Already Been HackedDHS emails hacked by SolarWinds, DPRK Actors created a Fake security Company, Space X gets encryptedLots happening this week, as I welcome in my new students to this term. Solarwinds fall out still happening, along with changes at the company, multi university hacks reported, North Korea is still being tricky, another water treatment plan was hacked (although in the past), Ubiquity has a whistle blower, and Space X encrypted their data streams. - thehill.com: Hackers accessed emails of top DHS officials as part of SolarWinds breach: report - www.cyberscoop.com: US to publish details on suspected Russian hacking tools used in SolarWinds espionage ...
2021-04-0419 minSolarWinds TechPod
SolarWinds TechPodSecure by Design | Securing the Software Development Build EnvironmentThe recent SUNBURST cyberattack on the SolarWinds software build environment is a concerning new reality for the software industry, representing the increasingly sophisticated actions by outside nation-states on the supply chains and infrastructure on which we all rely. SolarWinds¼ is committed to sharing our learnings about this attack broadly given the common development practices in the industry and our belief that transparency and cooperation are our best tools to help prevent and protect against future attacks.  Join us as SolarWinds SVP, Engineering Lee McClendon, KPMG Director of Cyber Security Services Caleb Queern, and Head Geekℱ Thomas LaRock discuss ho...
2021-03-2445 minYou\'ve Already Been Hacked
You've Already Been HackedSolarwinds takes more source code, Exchange Ransomware, 4.2 Billion lost to internet crime in 2020- www.zdnet.com: Mimecast reveals source code theft in SolarWinds hack - www.bleepingcomputer.com: CISA releases new SolarWinds malicious activity detection tool - www.zdnet.com: Microsoft investigates potential ties between partner security firm, Exchange Server attack code lea - arstechnica.com: Exchange servers first compromised by Chinese hackers hit with ransomware - www.bleepingcomputer.com: FBI: Over $4.2 billion officially lost to cybercrime in 2020 - www.cyberscoop.com: Cypriot sentenced for email hacking committed as teen - arstechnica.com: I was a teenage Twitter hacker...
2021-03-2118 minCybersmart Security
Cybersmart SecuritySolarwinds Hack Isn't Intern's Fault, New Covid-19 Phishing Scams And Identifying Social Media ScamsSolarwinds Hack Isn't Intern's Fault, New Covid-19 Phishing Scams And Identifying Social Media Scams. Cybercriminals are once again using the Covid-19 pandemic as a smokescreen for their phishing scams. These scammers rely on the naivety of victims to gain maximum damage. According to people’s reports to the FTC and a new Data Spotlight, about $117m was lost by consumers to scams starting from social media scams in the first 6 months of 2020. Thus it is more pertinent to know ways to identify scams beginning from the social media platforms. I discuss this and more in today's episode.  ...
2021-03-1317 minSolarWinds TechPod
SolarWinds TechPodSecure by Design | Helping Our Customers Get Back to BusinessOrganizations were stopped in their tracks when the cyberattack occurred. When you’re focused on taking the right actions to protect your environment, your users, and your entire enterprise, solid counsel and assistance is critical. How do you get back to business?   Join SolarWinds¼ President and CEO Sudhakar Ramakrishna, Head Geekℱ Thomas LaRock, and our key partners Greg Fetterhoff (Monalytic) and Bill Fitzpatrick (Loop1) as they share stories from their engagements with SolarWinds customers answering the challenge of the cyberattack—and getting back to business. From U.S. governmental agencies, to the Fortune 500, and all around the globe, they’ve helped...
2021-03-0941 minOch Menno
Och MennoEP91 - Wind of Change - Das IT Sicherheitsgesetz und Solarwinds ...Musik .. Tja die Scorpions .. https://www.youtube.com/watch?v=n4RjJKxsamQ   https://www.neues-deutschland.de/artikel/1148953.munitionsfunde-bei-der-bundeswehr-wenn-kommissar-zufall-helfen-muss.html https://www.bundestag.de/dokumente/textarchiv/2021/kw09-pa-innen-informationstechnik-821484 https://www.spektrum.de/news/solarwinds-ein-hackerangriff-der-um-die-welt-geht/1819187 https://www.pbs.org/newshour/nation/watch-live-senate-holds-hearing-on-solarwinds-hack https://twitter.com/RepKatiePorter/status/1365435633422856192 https://www.theguardian.com/technology/2021/feb/23/solarwinds-hack-senate-hearing-microsoft https://www.derstandard.de/story/2000122586991/solarwinds-passwort-fuer-gehackten-update-server-lautete-solarwinds123 https://www.businessinsider.com/solarwinds-warned-weak-123-password-could-expose-firm-report-2020-12?r=DE&IR=T https://en.wikipedia.org/wiki/SolarWinds h...
2021-03-0317 minThe Bottom Line with Deepak and Syed
The Bottom Line with Deepak and SyedWeekly Episode 10 - NASA and Solarwinds breach, Short Squeeze 2.0, How to be defensive in the market?, Why yields matter ?The Bottom Line has now reached Episode 10!! Starting back in mid-December with The Debut, and now 10 weekly episodes in, plus one exclusive episode under the boat, Syed and Deepak are grateful to everyone for their love and support. The Bottom Line will continue to provide everyone with great content going forward as well.  In Syed's tech and InfoSec update, he mentions that the SolarWinds breach now includes NASA as a victim. Syed also mentions that a  Ransomware gang hacked Ecuador's largest private bank.  Two other updates are provided by Syed regarding the T-Mobile data breach via...
2021-03-0115 minNon-Compliant Podcast
Non-Compliant PodcastNon-Compliant Podcast Episode 29: The One Where We Discuss The SolarWinds Cyberattack With Edelson's Digital Forensics Director Shawn DavisThe SolarWinds attack reminded everyone that the U.S. government, major corporations, and small businesses can all fall victim to sophisticated supply chain attacks. What went wrong and how can we limit the impact of the next attack? In Non-Compliant Podcast Episode 29, Host Jay Edelson, nationally recognized plaintiff’s attorney and founder of Edelson PC, and Guest Shawn Davis, the firm’s Director of Digital Forensics and leader of the firm’s tech investigations team, discuss the SolarWinds hack, vendor cybersecurity, geopolitical fall-out of cyberattacks, and what everyday companies can do to up their information security game. T...
2021-02-1839 minCybersecurity Unplugged
Cybersecurity UnpluggedHubris Before the Havoc at SolarWindsPride comes before a fall. That was certainly the case with SolarWinds, who were warned by Ian Thornton-Trump of their security shortcomings back in 2017. In this episode of Cybersecurity Unplugged, Thornton-Trump, CISO at Cyjax and former security adviser to SolarWinds discusses: The history of SolarWinds and his warning to them; The current threat landscape and our biggest vulnerabilities today; And how best to incentivize proper cybersecurity hygiene.
2021-02-1827 minSolarWinds TechPod
SolarWinds TechPodSecure by Design | Our Plan for a Safer SolarWinds and Customer CommunityCompanies must change the way they operate to combat increasingly sophisticated cyberattacks across ever-expanding attack surfaces. What we learn from one attack can help us protect against the next. Because the next attack is always on the horizon. What should you do to raise your defenses?  SolarWinds President and CEO Sudhakar Ramakrishna and cybersecurity expert and Krebs Stamos Group Founding Partner Alex Stamos discuss our plan for a safer SolarWinds and customer community – grounded in principles you can follow to secure your enterprise.    Sudhakar addresses the steps SolarWinds is taking to:   Further secure our internal...
2021-02-1751 minSoftware Engineering Institute (SEI) Webcast Series
Software Engineering Institute (SEI) Webcast SeriesSolarWinds Hack: Fallout, Recovery, and PreventionThe recent SolarWinds incident demonstrated the challenges of securing systems when they are the product of complex supply chains. Responding effectively to breaches and hacks requires a cross-section of technical skills and process insights. In this webcast, we explored the lifecycle of the SolarWinds activity and discussed both technical and risk assessment to prepare organizations to defend against this type of incident. What attendees will learn: *Technical details regarding the SolarWinds vulnerabilities and exploits *Supply chain risk management principles required to reduce the risk of future incidents *Advice on the core...
2021-02-111h 01Smashing Security
Smashing SecurityLockdown love scams, SolarWinds, and a data deletion bungleFingerprints and DNA records have been deleted from the UK's police database, the SolarWinds hack continues to wreak havoc and raise questions, and we have some advice for how to fall in love safely under lockdown...All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Professor Alan Woodward.Visit https://www.smashingsecurity.com/214 to check out this episode’s show notes and episode links.Follow the show on Twitter at @Sm...
2021-02-1148 minThe Bottom Line with Deepak and Syed
The Bottom Line with Deepak and SyedWeekly Episode 7 - SolarWinds O365 Email Compromise, Amazon Update, Ethereum and Doge Coin, Twitter, Disney and Coca-Cola StocksIn Episode 7, Syed begins with his technology update highlighting that SolarWinds CEO Confirms Office 365 Email compromise played a role in the broad-based attack.  Deepak highlights Amazon's earnings reports. A major point Deepak notes is that Jeff Bezos isn't actually leaving Amazon.  He is in fact stepping into the role of executive chair. Deepak also mentions how Amazon has ordered several trucks that run on natural gas.   The crew then transitions in Cryptocurrency.  Syed highlights the fact how Ethereum is now listed on derivatives exchange CME, as investors seek to take advantage of mounting institutional interest in t...
2021-02-0815 minShadowTalk: Powered by ReliaQuest
ShadowTalk: Powered by ReliaQuestWeekly: Lebanese Cedar, Nefilim Ghost Credentials, and More on SolarWinds and EmotetShadowTalk hosts Stefano, Adam, and Kim bring you the latest in threat intelligence. This week they cover:- More threat actors and attack vectors are being investigated in the SolarWinds compromise- Law enforcement officials in the Netherlands are delivering an Emotet update that will remove it from infected devices- Kim talks Lebanese Cedar - What’s new in their latest attack?- Adam reviews Nefilim ransomware - how were they able to gain access and why it reinforces the need for securing employee accounts - Plus, don’t miss the malware name of the week! Get this week’s intelligence summar...
2021-02-0541 minCyber Wire
Cyber WireChina gets in on the SolarWinds act. More SolarWinds vulnerabilities disclosed and patched. Abuse of lawful intercept tech in South Sudan. BEC phishes for gift cards. Parasitic card skimmer found.It appears Chinese intelligence services have been exploiting a vulnerability in SolarWinds to steal data from a US Government payroll system. The presumed Russian intrusion into SolarWinds may have been going on for nine months or more. Three new SolarWinds vulnerabilities are disclosed and patched. Amnesty accuses South Sudan of abusing intercept tools. BEC compromise is involved in gift card scams. Joe Carrigan has thoughts on opt-in privacy policies. Our guest is Dale Ludwig from CHERRY on USB attacks and hardware security. And carders steal from other carders. For links to all of today's stories check out our CyberWire daily...
2021-02-0300 minTevora Talks Cybersecurity
Tevora Talks CybersecurityTevora Talks - What We Know About the SolarWinds HackThis week, we discuss the SolarWinds Hack of 2020-2021, the saga Continues... What we know Whappened exactly What is the 2021 update on the hack What we did to combat it What the future holds Links mentioned in this episode: https://gist.github.com/ZephrFish/afb6a9c9eeef5cf37301e13d661e0347 https://www.wired.com/story/solarwinds-hack-china-usda/ https://www.complianceweek.com/cyber-security/solarwinds-hack-turning-into-pandoras-box-of-cyber-risk/30001.article http://tevoratalks.com Instagram, Twitter, Facebook: @TevoraTalks
2021-02-0337 minPercepticon.de
Percepticon.de24 Solarwinds Hack /invite Sven HerpigSolarwinds ist der Name fĂŒr einen Cyber-Angriff gegen eine Netzwerkmanagement Software, der Ende 2020 bemerkt wurde. Der Hack hat globale Implikationen: Hunderttausende Firmen sind davon potenziell betroffen, hunderte Regierungseinrichtungen weltweit und diverse Firmen. Die Implikationen von Solarwinds fĂŒr IT-Sicherheit und Cyber-Konfliktdynamiken sind vielfĂ€ltig. Ich plaudere mit Sven Herpig von der Stiftung Neue Verantwortung darĂŒber. Was ist passiert? Was wissen wir? Waren es die Russen? Warum ist der Hack schlecht? Was bedeutet das Thema fĂŒr die US Cyber-Abwehr von "persistent engagement" bis hin zu "detetence by denial"? Was bedeutet das fĂŒr Deutschland? tl;dr: Alle gĂ€ngigen...
2021-01-3156 minOptrics Insider
Optrics InsiderOptrics Insider - Update on Solarwinds Attack, Extreme Networks Misses Flash Deadline & DNSpooqJoin Scott Young and Shaun Sturby from Optrics Engineering as they discuss FireEye's update on the Solarwinds attack, Flash is dead but Extreme Networks didn't get the memo, DNSpooq and SonicWall joins FireEye, Microsoft and MalwareBytes on the list of network security companies who have been hacked. For more IT tips go to: > www.OptricsInsider.com Timecodes: 0:00 - Intro 0:20 - Today's 3 topics 0:49 - Topic 1: FireEye's update on the Solarwinds attack 2:33 - Topic 2: Flash is dead but Extreme Networks didn't get the memo 4:45...
2021-01-2815 minThe Week in Philly from KYW Newsradio
The Week in Philly from KYW NewsradioHow the SolarWinds breach became "one of the worst hacks ever to hit government agencies."When the IT software company SolarWinds was breached in a cyber hack, cybersecurity firewalls across the United States were effectively slashed open. The widespread damage affected companies of every size and many U.S. government agencies. Since then, more information has bubbled up about the hack, its size, and the ramifications for information security. So what have we learned since we first discovered what happened and the astounding number of companies and agencies affected? What can we do to keep something like the SolarWinds hack from happening ever again? And on a national level, how is the U.S...
2021-01-2522 minYou\'ve Already Been Hacked
You've Already Been HackedSolarwinds new tricks, hospital hack, fake vaccine info and moreFireeye tries to help, Solarwinds has another trick up it’s sleeve, students infected with malware from government laptops, and the FBI warns of vishing, all this week. Fireeye Release a tool to help: https://www.zdnet.com/article/fireeye-releases-tool-for-auditing-networks-for-techniques-used-by-solarwinds-hackers/ SolarWinds has a fourth vector: https://www.zdnet.com/article/fourth-malware-strain-discovered-in-solarwinds-incident/ Malwarebytes hit with SW: https://threatpost.com/malwarebytes-solarwinds-attackers/163190/ Vulnerable Students infected with Malware: https://www.bbc.com/news/technology-55749959 CISA’s got a new campaign: https://thehill.com/policy/cybersecurity/535240-federal-cyber-agency-announces-new-campaign-to-fight-ransomware-attacks Belgium Hospital loses 100TB: https://www...
2021-01-2418 minProactiveIT Cyber Security Daily
ProactiveIT Cyber Security DailyEpisode 287 - We Haven’t Talked About SolarWinds in a Few DaysGood Morning and Welcome to the ProactiveIT Cyber Security Daily number 287.  It is Wednesday January 20th  2021.  I am your host Scott Gombar and We Haven’t Talked About SolarWinds in a Few Days Google Chrome 88 released: RIP Flash Player and FTP support Linux Devices Under Attack by New FreakOut Malware Bugs in Signal, Facebook, Google chat apps let attackers spy on users DNSpooq bugs let attackers hijack DNS on millions of devices Malwarebytes says SolarWinds hackers accessed its internal emails SolarWinds Malware Arsenal Widens with Raindrop 2020 Healthcare Data Breach Report: 25% Increase in Breaches in 2020
2021-01-2021 minFUTR.tv Podcast
FUTR.tv PodcastChainkit CEO Val Bercovici On What You Need To Know About The Solarwinds BreachSend us Fan MailCheck Below for links and additional information mentioned in this episode! There have been some very high profile hacks in the news lately. Some of these have even been hacks of security vendors themselves, from Microsoft to FireEye, but perhaps one of the most disturbing was the recent SolarWinds hack that we are just starting to come to grips with. If you are not familiar with the details of this attack, you need to be. Today we are going to talk security so buckle in. The scope of the re...
2021-01-181h 00ShadowTalk: Powered by ReliaQuest
ShadowTalk: Powered by ReliaQuestWeekly: Sunburst, Sunspot, and more on SolarWinds!ShadowTalk hosts Alec, Charles, Austin, and Ivan bring you the latest in threat intelligence. This week they cover:- Significant updates to the SolarWinds incident- Overlaps of the "Sunburst" backdoor and malware known to be used by the believed Russia-affiliated APT "Turla"- Possible SolarWinds scam - SolarLeaks claiming to sell data stolen in SolarWinds attacks- The newly identified Sunspot malware- Mimecast reporting of a compromised certificate possibly related to SolarWinds - the team dives deeper- DarkSide ransomware decryptor keys being released and how DarkSide respondedGet this week’s intelligence summary at: https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-15-january ***Resources fr...
2021-01-1528 minHurricane Labs InfoSec Podcast
Hurricane Labs InfoSec PodcastFireEye & SolarWinds Follow-Up with Senior SOC Analyst Tony RobinsonIn this podcast, Heather welcomes Senior SOC Analyst Tony Robinson back for a follow-up discussion about the FireEye and SolarWinds breaches.  Related resources:  FireEye and SolarWinds Breaches Q&A with Senior SOC Analyst Tony Robinson by Heather Terry Security Advisory Regarding SolarWinds Supply Chain Compromise by Tony Robinson Security Advisory Regarding the Recent FireEye Breach Reports by Tony Robinson Click here for a transcript of our chat.
2021-01-1314 minProactiveIT Cyber Security Daily
ProactiveIT Cyber Security DailyEpisode 281 - SolarWinds Attackers Were Lurking for More than a YearGood Morning and Welcome to the ProactiveIT Cyber Security Daily number 281.  It is Tuesday January 12th  2021.  I am your host Scott Gombar and SolarWinds Attackers Were Lurking for More than a Year Microsoft Releases Security Updates for Edge Millions of Social Profiles Leaked by Chinese Data-Scrapers 70TB of Parler users’ messages, videos, and posts leaked by security researchers SolarWinds Hack Potentially Linked to Turla APT Microsoft Sysmon now detects malware process tampering attempts Mac malware uses 'run-only' AppleScripts to evade analysis DarkSide ransomware decryptor recovers victims' files for free United Nations data breach exposed over 100k UNEP staff records Networking giant...
2021-01-1217 minPower Problems
Power ProblemsShining a Light on the SolarWinds HackDid Russia commit a cyber attack or cyber espionage? What is the difference and how does it affect the U.S. response and future of cybersecurity? Cato Institute’s own Brandon Valeriano and Atlantic Council’s Erica Borghard join host John Glaser to discuss the severity of the SolarWinds hack and its implications for the broader cybersecurity political landscape.1.  Brandon Valeriano bio: https://www.cato.org/people/brandon-valerianoErica Borghard bio: https://www.atlanticcouncil.org/expert/erica-borghard/   2.  Sean Lawson and Brandon Valeriano, “The Russian ‘Cyber Peral Harbor’ That Wasn’t,”...
2021-01-1237 minYou\'ve Already Been Hacked
You've Already Been HackedSolarwinds breeched US Courts, Insider Threat impacts PPE, and 4 Breaches for T-Mobile in 3 yearsSites for the News References - krebsonsecurity.com: Sealed U.S. Court Records Exposed in SolarWinds Breach - www.fedscoop.com: CISA updates guidance on SolarWinds compromise - www.zdnet.com: SolarWinds: The more we learn, the worse it looks - www.theverge.com: SolarWinds hack may be much worse than originally feared - duo.com: SolarWinds Attackers Accessed, But Did Not Modify, Microsoft Source Code - www.zdnet.com: CISA updates SolarWinds guidance, tells US govt agencies to update right awa - threatpost.com...
2021-01-1014 minShadowTalk: Powered by ReliaQuest
ShadowTalk: Powered by ReliaQuestWeekly: SolarWinds Updates, TicketMaster Fraud, Apex Cyber Attack, and More!ShadowTalk hosts Stefano, Kim, Adam, and Dylan bring you the latest in threat intelligence. This week they cover:- Post-holiday updates on SolarWinds - what have we missed? - Ticketmaster gets fined $10 million for illegally accessing the internal systems of a competitor, using the credentials of a former employee- Apex Laboratory announced that it was the victim of a cyber attack - what we know so far- 2020 in review: What will the new year bring in the world of cyber security?Get this week’s intelligence summary at: https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-08-january ***Resources from this week’s podc...
2021-01-0842 minOptrics Insider
Optrics InsiderOptrics Insider - Checkpoint SSL VPN Cert Expired, Undocumented Zyxel Backdoor & Solarwinds UpdateJoin Scott Young and Shaun Sturby from Optrics Engineering as they discuss the SSL certificate for Checkpoint VPN devices that has expired, the undocumented backdoor in Zyxel devices and a Solarwinds update from Bruce Schneier. For more IT tips go to: > www.OptricsInsider.com Timecodes: 0:00 - Intro 0:18 - Today's 3 topics 0:35 - Topic 1: Checkpoint SSL VPN Cert Expired 2:41 - Topic 2: Undocumented Zyxel Backdoor 7:38 - Topic 3: Solarwinds update from Bruce Schneier 13:41 - Closing remarks Learn more about Checkpoint's SSL Cert for...
2021-01-0714 minheiseshow
heiseshowCyberattacke ĂŒber SolarWinds – wie angreifbar sind wir?mit JĂŒrgen Schmidt, JĂŒrgen Kuri und Martin Holland Die massive Cyberattacke ĂŒber die Orion-Software von SolarWinds sorgt in den USA seit Wochen fĂŒr Aufsehen, das ganze Ausmaß scheint noch nicht abzusehen. Als Angreifer wurden lĂ€ngst Russen, mutmaßlich in Diensten des Staates ausgemacht, lediglich Donald Trump scheint das noch anders zu sehen. Einflussreiche Politiker sind entsetzt, weil immer deutlicher wird, wie weitreichend der Angriff war. Aus den bereits bekannten Informationen lĂ€sst sich schon jetzt ein Bild zeichnen, das fĂŒr die USA nicht schmeichelhaft ist, anderswo dĂŒrfte es aber nicht viel anders sei...
2021-01-0752 minProactiveIT Cyber Security Daily
ProactiveIT Cyber Security DailyEpisode 278 - The SolarWinds Hits Keep ComingGood Morning and Welcome to the ProactiveIT Cyber Security Daily number 278.  It is Thursday January 7th  2021.  I am your host Scott Gombar and The SolarWinds Hits Keep Coming RCE ‘Bug’ Found and Disputed in Popular PHP Scripting Framework Cybercriminals Ramp Up Exploits Against Serious Zyxel Flaw A COVID-19 shot for $150? Online scams surge as slow vaccine rollout frustrates CISA Updates Emergency Directive 21-01 Supplemental Guidance and Activity Alert on SolarWinds Orion Compromise WhatsApp: Share your data with Facebook or delete your account Windows 10 WSL now can run Linux commands on startup SolarWinds hackers had access to over 3,000 US DOJ email account
2021-01-0711 minYou\'ve Already Been Hacked
You've Already Been HackedSolarWinds News, and the Top 10 Hacks of 2020This week, just a small update on SolarWinds, and a look back at the top 10 hacks that occurred in 2020. www.cyberscoop.com: Grid regulator warns utilities of risk of SolarWinds backdoor, asks how exposed they are www.govinfosecurity.com: CISA Warns SolarWinds Incident Response May Be Substantial - www.bleepingcomputer.com: SolarWinds releases updated advisory for new SUPERNOVA malware www.wired.com: The Worst Hacks of 2020, a Surreal Pandemic Year arstechnica.com: 2020 had its share of memorable hacks and breaches. Here are the top 10
2021-01-0316 minPolySĂ©cure Podcast volet Curieux
PolySĂ©cure Podcast volet CurieuxCurieux - Autopsie d'une crise - DĂ©mystifier le piratage de SolarWindsParce que
 c’est l’épisode 0x006! PrĂ©ambule Le piratage rĂ©cent de SolarWinds a affectĂ© des entreprises et agences gouvernementales partout dans le monde, montrant Ă  quel point les menaces informatiques peuvent ĂȘtre graves. DĂ©but dĂ©cembre 2020, des hackers ont infiltrĂ© la plateforme managĂ©e de SolarWinds par le biais d’une vulnĂ©rabilitĂ© logicielle connue. Une fois Ă  l’intĂ©rieur, les pirates ont pu accĂ©der aux donnĂ©es sensibles des clients affectĂ©s. MalgrĂ© toutes les mesures prises par SolarWinds pour restaurer l’intĂ©gritĂ© du systĂšme et protĂ©ger ses clients, ce piratage souligne...
2021-01-0315 minClock Speed with Shamus Madan
Clock Speed with Shamus MadanSolarWinds Hacked, Billionaire's Strategies to Make More MoneyIn this episode, Shamus Madan delves into the SolarWinds hack and Microsoft's cybersecurity measures. He further explores Warren Buffett's wealth-building strategies and concludes with a lesson on understanding opportunity cost. Story #1: The security company SolarWinds was hacked rumors are through a foreign agency. In this cyberattack multiple US agencies and businesses were infiltrated. What could this attack on SolarWinds foreshadow for the future of cybersecurity? Story #2: Warren Buffett has some strategies for teaching kids about money. And learn how you could make some better financial decisions. (0:00) Introduction and news stories overview (0:34) Discussion on SolarWinds hack (1:40) Microsoft's...
2020-12-2805 minIdentity at the Center
Identity at the Center#75 - SolarWinds Breach with Paul VolosenJim talks with Paul Volosen, Information Security Architect & Vice President at Mitsubishi UFJ Financial Group, about the recent SolarWinds breach.Show Links:Connect with Paul on LinkedIn: https://www.linkedin.com/in/paulvolosen/Paul's CyberSecurity 101 on LinkedIn:https://www.linkedin.com/feed/update/urn:li:activity:6733870238582108160/SolarWinds Brief: https://www.solarwinds.com/securityadvisory/faqNSA Brief: https://media.defense.gov/2020/Dec/17/2002554125/-1/-1/0/AUTHENTICATION_MECHANISMS_CSA_U_OO_198854_20.PDF?mkt_tok=eyJpIjoiWTJFNU9UazRZV0l3WVdZNCIsInQiOiJyU0dmeTJ1U3hWTmFIMThIV3F2b1BiTWE3SndIZXBDNGNlakU3VWQxNnpDNzA1TWVLXC9...
2020-12-2826 minThe Dev Null Podcast
The Dev Null PodcastEpisode 6: Section 230 and Freedom of Speech, Darko Cooks, Solarwinds and SUNBURSTIn this episode Fede gives an update on recent moves in the section 230 legislation made by Trump and Senator Graham. Darko Talks about the state of Internet ads on cooking websites. Brent discusses the latest news on the Solarwinds Hack and the SUNBURST software.Write to us at devnullpodcast@protonmail.com https://www.techspot.com/news/88016-apple-reacts-facebook-attack-ad-tanding-up-our.htmlhttps://www.techspot.com/news/88015-facebook-slams-apple-another-critical-newspaper-ad.htmlhttps://www.nextpit.com/ads-consume-half-of-your-mobile-data#:~:text=An%20average%20of%2048%25%20of,page%20is%20consumed%20by%20advertisinghttps://www.sans.org/blog/what-you-need-to-know-about-the-solarwinds-supply-chain-attack/
2020-12-231h 02Vulnerable, el podcast de seguridad digital
Vulnerable, el podcast de seguridad digitalSeguimiento al Hackeo en Solarwinds (y tantos otros)En el episodio previo de Vulnerable comentĂ©, lo que hasta ese momento, tenĂ­a como informaciĂłn confirmada sobre el ataque a Solarwinds. Desde ese momento mĂĄs luz ha salido a la superficie y este tema promete no irse a ningĂșn lado pronto asĂ­ que es necesario hacer un episodio de seguimiento. Si no han escuchado el episodio previo los invito - ĂĄmpliamente - a hacerlo pero en caso de que estĂ©n un poco apretados de tiempo les doy un rĂĄpido resumen:En uno de los ataques a la cadena de suministro que mayor alcance h...
2020-12-2215 minLast Week in .NET
Last Week in .NETSolarwinds Hacked; Microsoft on the AttackBetween the SolarWinds hack, Microsoft releasing a working document detailing the problems with the .NET ecosystem, and a bouncy castle crypto vulnerability, it's been a busy week. Let's dive in and see what happened, shall we?đŸ€Œ Immo Landwerth, PM for .NET, writes a document on the eco-system problems in .NET. This document is monumental in it being a candid take on the .NET OSS ecosystem problem; and while it says it softer than I will, it lays the blame for the state of the .NET Ecosystem on Microsoft. Building Trust with your community is the first step to...
2020-12-2109 minCyber Work
Cyber WorkSolarWinds breach: Insights from the trenches | Guest Keatron Evans | Bonus incident response walkthroughs in descriptionIt’s been a busy week for cybersecurity professionals as they respond to the SolarWinds breach. On December 13, the Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive to immediately “disconnect or power down SolarWinds Orion products" as they were being actively exploited by malicious actors.Infosec Skills author and KM Cyber Security managing partner Keatron Evans is helping numerous clients respond to the breach. In this live discussion and incident response demo (recorded Friday, December 18) he covers: – What happened with the SolarWinds supply chain attack– Immediate action you can take to protect your sys...
2020-12-2147 minBlue Security
Blue SecurityOur thoughts on Fireeye, Solarwinds, and SunburstThis week, Adam and Andy give you their thoughts on the Fireeye and Solarwinds breach. They also give defenders advice on immediate steps to help strengthen their organizations as well as some future insights on the direction security may be heading in terms on identity and device management. Finally, they give some thoughts on why it is important for security, business, and technical teams need to work as one cohesive unit in order to make security programs successful. Documentation: Unauthorized Access of FireEye Red Team Tools Check Point Response to FireEye Red Team...
2020-12-2134 minDailyCyber The Truth About Cyber Security with Brandon Krieger
DailyCyber The Truth About Cyber Security with Brandon KriegerSolarWinds Cyber Security BreachSolarWinds Cyber Security Breach | DailyCyber 243 ~ Watch Now ~In today’s DailyCyber Podcast I discuss how are things going in the Pandemic in the GTA. I also go through the SolarWinds and FireEye Breach.  Microsoft, FireEye confirm SolarWinds supply chain attackhttps://www.zdnet.com/article/microsoft-fireeye-confirm-solarwinds-supply-chain-attack The CyberWire DailyBriefing For 12.14.20[https://thecyberwire.com/newsletters/daily-briefing/9/239] Cozy Bearhttps://en.wikipedia.org/wiki/Cozy_Bear    To learn more watch the video or lis...
2020-12-1939 minShadowTalk: Powered by ReliaQuest
ShadowTalk: Powered by ReliaQuestWeekly: SolarWinds Supply-Chain Attack Round-UpShadowTalk hosts Kacey, Charles, Alec, and Digital Shadows CISO Rick bring you the latest in threat intelligence. This week they cover all things SolarWinds:- An overview of the campaign and event timelines- SolarWinds' SEC filing and its implications- Early indicators of compromise, including public FTP creds and an access listing- What we can expect from this attack as time goes onGet this week’s intelligence summary at: https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-18-december ***Resources from this week’s podcast***Microsoft: https://msrc-blog.microsoft.com/2020/12/13/customer-guidance-on-recent-nation-state-cyber-attacks/SolarWinds:https://www.solarwinds.com/securityadvisoryFireEye: https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html...
2020-12-1835 minBrakeSec Education Podcast
BrakeSec Education Podcast2020-046-solarwinds-fireeye-breaches-GE-medical-device-issues-and-2021_predictionsEnd of year podcast   Blumeria sponsorship NEWS:   IT company SolarWinds says it may have been hit in 'highly sophisticated' hack | Reuters   FireEye hacked: US cybersecurity firm FireEye hit by 'state-sponsored' attack - BBC News     https://krypt3ia.wordpress.com/ - 16 december 2020   Microsoft flexing muscle to shutdown c2: Microsoft unleashes 'Death Star' on SolarWinds hackers in extraordinary response to breach - GeekWire   Little-known SolarWinds gets scrutiny over hack, stock sales (apnews...
2020-12-1752 minLet\'s Write Steno!
Let's Write Steno!THE SOLARWINDS HACK AFFECT 18K CUSTOMERS (CURRENT EVENT)THIS DICTATION IS REGARDING THE HACKING INCIDENT THAT TOOK PLACE ON DECEMBER 13TH.  THIS HACK INVOLVED SEVERAL KEY PLAYERS SUCH AS MICROSOFT, GODADDY. AND FIREEYE AND COULD POSSIBLY HAVE EVEN AFFETED THE FEDERAL GOVERNMENT; ALTHOUGH THIS HAS YET TO BE TONFIRMED. USERS OF THE ORION PRODUCTS SUCH AS MICROSOFT 365.  THE LINKS TO THE ARTICLES I READ ARE BELOW.  PLEASE SUBSCRIBE FOR MORE DICTATION ON MY PODCAST AND ON MY YOUTUBE CHANNEL WHERE I AM REACHING FOR 1000 SUBS! YOU CAN ALSO DONATE HELP BY CLICKING LISTENER SUPPORT AND GIVING 99 CENTS A MONTH IF YOU WOULD LIKE TO CONTINUE HEARING MORE DIC...
2020-12-1728 minOptrics Insider
Optrics InsiderOptrics Insider - iPhone WiFi Exploit, FireEye Hacked, Solarwinds Orion Backdoor & CIA Owns OmniSecJoin Scott Young and Shaun Sturby from Optrics Engineering as they discuss the iPhone zero click WiFi exploit,  cybersecurity company FireEye hacked and their red team tools being stolen, how network management and performance monitoring tool Solarwinds Orion was used to install a backdoor and the CIA is found to own Omnisec another Swiss cypto company. For more IT tips go to: > www.OptricsInsider.com Timecodes: 0:00 - Intro 0:16 - Today's 3 topics 0:49 - Topic 1: iPhone Zero-Click Wi-Fi exploit 3:45 - Topic 2: How FireEye was hacked 6:48...
2020-12-1612 minVulnerable, el podcast de seguridad digital
Vulnerable, el podcast de seguridad digitalHackean a Solarwinds y de Paso a cientos de organizaciones.La industria y medios especializados en seguridad estĂĄn volcados sobre el tema predilecto para todos. Y en mi opiniĂłn, tienen razĂłn para hacerlo. Solarwinds fue vulnerada no con el objetivo de instalar ransomware a lo largo y ancho de su red ni para filtrar el cĂłdigo de sus mĂșltiples herramientas para el monitoreo de activos digitales. La razĂłn de atacar a Solarwinds fue usarlos como trampolĂ­n en lo que es un gran caso de estudio para entender los ataques a la cadena de suministro. Un poco de contexto: Solarwinds es una empresa cuyo negocio...
2020-12-1510 minSolarWinds TechPod
SolarWinds TechPodReturn to Work: The New DifferentFor many people, February 2020 marked the point when everything changed: When schools, stores, religious institutions, and businesses began to shutter their physical locations and we all began grappling with ways to turn our homes into multi-purpose office, gym, schoolhouse, and pet centers. But that was then, and the challenge businesses now face is the inverse—people coming back to the office. How are organizations planning to un-ring the work-from-home bell? More to the point, how are IT departments helping their organization craft a successful Return-to-Office (RTO) plan and ensure disruption to both the business and the IT team itself is minimized.   ...
2020-06-2345 minSolarWinds TechPod
SolarWinds TechPodSolarWinds IT Trends Report Insights With Keith TownsendThe SolarWinds¼ IT Trends Report 2020 explores the evolving role of technology in business and the tech pros in charge of driving business performance. This year shows there’s less focus on emerging technologies like AI and edge and more focus on cloud computing, hybrid IT, and security. Tech pros also report increased responsibilities but decreased resources. In this episode of TechPod, Head Geeksℱ Chrystal Taylor and Leon Adato are joined by The CTO Advisor himself, Keith Townsend, to explore what this latest survey means to IT professionals and the businesses they help support.  The focus transition from physical infra...
2020-05-1932 minSolarWinds TechPod
SolarWinds TechPod[De]Constructing Cloud With Mike PfeifferOn this episode of SolarWindsŸ TechPod, our host Patrick Hubbardℱ, SolarWinds Head Geek, is joined by Mike Pfeiffer, a twenty-year tech industry veteran who’s worked for some of the largest technology companies in the world, including Microsoft and Amazon Web Services (AWS). We'll help you make sense of cloud and application performance management (APM), starting with which cloud provider is best for your needs, spanning multi-cloud strategies and the rise of custom applications, and ultimately, how tech pros should be managing all this added complexity with APM.  This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide...
2019-12-1736 minSolarWinds TechPod
SolarWinds TechPodPart II: Futureproofing. Your Other Full-time job.Futureproofing. It’s a buzzword you hear a lot these days, but it can mean quite a few things if you’re an IT professional. Forecasting your next round of hardware upgrades? Sure. Migrating to the cloud, adopting the next whatever as a service, building out long-range budgets? Yup. Or maybe your current role now necessitates leveling-up IT skills for an evolving job title? The list goes on. At the end of the day, futureproofing has really become a larger exercise in adaptability and how you as an IT professional, your IT department, and your company navigate the endless chan...
2019-09-1729 minSolarWinds TechPod
SolarWinds TechPodPart I: Futureproofing. Your Other Full-Time Job.Future-proofing. It’s a buzzword you hear a lot these days, but it can mean quite a few things if you’re an IT professional. Forecasting your next round of hardware upgrades? Sure. Migrating to the cloud, adopting the next whatever as a service, building out long-range budgets? Yup. Or maybe your current role now necessitates leveling-up IT skills for an evolving job title? The list goes on. At the end of the day, future-proofing has really become a larger exercise in adaptability and how you as an IT professional, your IT department, and your company navigate the endless chan...
2019-09-1328 minSolarWinds TechPod
SolarWinds TechPodAutomated ComplianceIn this episode of SolarWindsÂź TechPodℱ, Destiny Bertucci and Eric Hodeen discuss SolarWinds Network Configuration Manager and the benefits of automated compliance. This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-06-2822 minSolarWinds TechPod
SolarWinds TechPodMonitoring as a StrategyIn this episode of SolarWindsÂź TechPod, Tech Talks, Alex Navarro sits down with SolarWinds Head Geekℱ Sascha Giese to discuss how network monitoring as a strategy can take any organization to the next level by saving both time and money. This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-06-0631 minSolarWinds TechPod
SolarWinds TechPodHow to Survive an M&AIn this episode of SolarWinds¼ TechPod, host Alex Navarro discusses how to survive and thrive before, during, and after an acquisition with the organizer in chief of Gestalt IT’s Tech Field Day, Stephen Foskett and SolarWinds Head Geekℱ, Patrick Hubbard. This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-05-0923 minSolarWinds TechPod
SolarWinds TechPodEmail SecurityEmail security. Do a Google search and you'll find it's one of the biggest concerns facing businesses today. Join Ashley Bono, SolarWindsŸ MSP Product Marketing Manager, and SolarWinds Mail Assure product team members Dreas von Donselaar and Mia Thompson as they discuss the evolution and weaponization of email spam...and the tools you can use to keep the bad actors out of your inbox.   This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-04-2532 minSolarWinds TechPod
SolarWinds TechPodOvercoming Security ObjectionsIt’s time for MSPs to have better security conversations with their customers—and SolarWindsÂź VP of security Tim Brown and SolarWinds MSP senior channel sales specialist Stefanie Hammond know just how you can broach these terse topics. Listen in as they give you the security scoop.  This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-04-1828 minSolarWinds TechPod
SolarWinds TechPodSecurity Theater, Shadow IT, and Insider ThreatsIn this episode of SolarWindsÂź TechPod, host Alex Navarro is joined by two VP’s of product strategy—Mav Turner and Brandon Shopp—to discuss which security issues, solutions, and strategies are trending topics of conversation at this year’s SolarWinds Government Partner Summit and User Group.  This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-04-0431 minSolarWinds TechPod
SolarWinds TechPodTraining for the Future In this episode of SolarWindsÂź TechPod, host Alex Navarro chats with SolarWinds Head Geekℱ Leon Adato and Senior Director of SolarWinds Academy Cal Smith to discuss what skills tech pros can develop now to position themselves, and the organizations they serve, for future success. This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-03-2817 minSolarWinds TechPod
SolarWinds TechPodManaging People, Not DevicesFor managed services providers (MSPs) first came reactive services. Then came device management. And, now, it's time to talk about managing people. Join David Weeks, SolarWindsÂź MSP Director of Sales, and Chris Reid, Sr. Product Manager for SolarWinds N-centralÂź, as they talk about how to make the switch from devices to people—and why it makes sense for MSPs.   This podcast is provided for informational purposes only.© 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-03-2130 minSolarWinds TechPod
SolarWinds TechPodSecurity QuickfireIn this episode of SolarWindsŸ TechPod, host Alex Navarro discusses security threats, the importance of practicing good cyber hygiene, and best practices for managing users and their devices with Mav Turner, Denny LeCompte, and Jim Hansen of SolarWinds.   This podcast is provided for informational purposes only. © 2019 SolarWinds Worldwide, LLC. All rights reserved.
2019-03-0727 minSMB Community Podcast
SMB Community PodcastInterview: Alistair Forbes on the SolarWinds MSP Acquisition of LogicNowI had a great conversation with Alistair Forbes, the new Managing Director of SolarWinds MSP (formerly the General Manager at LogicNow). In case you missed the news yesterday, SolarWinds MSP bought LogicNow. LogicNow CEO Walter Scott now becomes the Executive Vice President of Solarwinds MSP. And Dave Sobel retains his title as Senior Director of Partner Community and Field Marketing. I exchanged a few emails with Dave as he's traveling in Portugal right now. He is very excited and positive about the changes ahead. Change brings uncertainty, and I've received lots of emails and requests...
2016-06-0316 minSMB Community Podcast
SMB Community PodcastInterview: Alistair Forbes on the SolarWinds MSP Acquisition of LogicNowI had a great conversation with Alistair Forbes, the new Managing Director of SolarWinds MSP (formerly the General Manager at LogicNow). In case you missed the news yesterday, SolarWinds MSP bought LogicNow. LogicNow CEO Walter Scott now becomes the Executive Vice President of Solarwinds MSP. And Dave Sobel retains his title as Senior Director of Partner Community and Field Marketing. I exchanged a few emails with Dave as he's traveling in Portugal right now. He is very excited and positive about the changes ahead. Change brings uncertainty, and I've received lots of emails and requests...
2016-06-0316 min