Update: The Prohibition Order effective date is January 16th, 2021. Get more details

SolarWinds Breach Report 1

In-Depth Analysis

SolarWinds Data Breach Report

Take an in-depth look at what happened, the business impact, and mitigation strategies.

What happened?

Solarwinds software supply chain compromise dubbed SUNBURST leads to the compromise of several high profile targets including Treasury, DHS and many other US Government and commercial targets.

Key Takeaways:

  • 18,000 customers installed the malware
  • Attack undetected for 9 months
  • 77 Federal agencies impacted
  • All trails point to Russia’s hacking group, Cozy Bear

Could this have been prevented?

Attacks such as these are very advanced and difficult to detect, because we innately trust the software our vendors provide. Fortress is in the business of securing entire supply chains from vendors to assets and products, including the hardware and software components that make up these products.

Security Breach Report

SolarWinds Breach Report 2

SolarWinds Breach Report 3 SolarWinds Breach Report 4 SolarWinds Breach Report 5

189 S. Orange Avenue, Ste 1950, Orlando, FL 32801
(407) 573.6800
sales@fortressinfosec.com

COPYRIGHT © 2020. FORTRESS INFORMATION SECURITY. ALL RIGHTS RESERVED. PRIVACY POLICY

DOWNLOAD THE FULL

THREAT INTELLIGENCE REPORT

ORACLE LINUX 7 REPOSITORIES INFECTED WITH “HTML.EXPLOIT.C99-24” EXPLOIT

DOWNLOAD THE FULL

THREAT INTELLIGENCE REPORT

ZOOM VIDEO CONFERENCING AND COMMUNICATIONS

THREAT INTELLIGENCE REPORT

Windows CryptoAPI Vulnerability

White Paper

Asset to Vendor Network for Power Utilities

PRESS RELEASE

FORTRESS LAUNCHES INNOVATIVE COLLABORATION TO HELP PROTECT THE POWER GRID FROM CYBER THREATS

Emerging Risk Brief

ASSET RISK MANAGEMENT - FOR PORT AUTHORITIES

Advisory

5 STEPS FOR AN EFFECTIVE THIRD PARTY VENDOR RISK PROGRAM

White Paper

CIP COMPLIANCE – UPDATES, ENFORCEMENT AND PRACTICAL IMPLEMENTATION

Advisory

5 STEPS TO A STRONG VULNERABILITY MANAGEMENT PROGRAM

WHITE PAPER

NERC CIP COMPLIANCE

Subscribe to Fortress Newsletter

For breach reports, threat intelligence, regulatory updates, cyber security news alerts and more, sign up to receive the Fortress Newsletter.

No, thanks!

Threat Advisory

Outdated Security Appliance Facilitates Denial-of-Service Attack on U.S. Grid

WEBINAR DOCUMENT

NERC CIP SUPPLY CHAIN SECURITY STANDARDS