Securing build servers and the development process as a whole is crucial to avoid becoming part of a software supply-chain attack. SUNBURST is a malware that was spread by breaching the build server for SolarWinds’ Orion product. Using threat modeling it is possible to identify mitigations to reduce the risk and improve the security of the development life-cycle.
This is an analysis of part of the network of Russian organized crime hacking groups.
This is a preliminary analysis of the SolarWinds Orion supply-chain nation-state attack. This is an ongoing analysis and more information will be published when available.
Over the last few years, the battle against Ransomware has resulted in many companies and organizations investing in their backup solutions to restore their environment if it gets encrypted Unfortunately, that’s no longer enough. The threat actors modus operandi has adapted and changed to those protections, and they now also using blackmail to get more money with ransom notes exceeding USD 50M. The ransom note […]
TIBER – improving the financial stability of Sweden Do you know what TIBER is? Have you read the public TIBER framework documents and feel overwhelmed? Then read on as I explain how to prepare for and implement the TIBER framework. Let’s get started with some background information about the origins of the TIBER framework. TIBER […]