Category:

Avoiding supply-chain attacks similar to SolarWinds Orion’s (SUNBURST)

07 Jan 2021 in Cyber Security&Secure Development

Securing build servers and the development process as a whole is crucial to avoid becoming part of a software supply-chain attack. SUNBURST is a malware that was spread by breaching the build server for SolarWinds’ Orion product. Using threat modeling it is possible to identify mitigations to reduce the risk and improve the security of the development life-cycle.

Collaboration between FIN7 and the RYUK group, a Truesec Investigation

22 Dec 2020 in Cyber Security

This is an analysis of part of the network of Russian organized crime hacking groups.

The SolarWinds Orion SUNBURST supply-chain Attack

17 Dec 2020 in Cyber Security

This is a preliminary analysis of the SolarWinds Orion supply-chain nation-state attack. This is an ongoing analysis and more information will be published when available.

It’s time to stop being defensive and go on the offensive!

06 Nov 2020 in Cyber Security

Over the last few years, the battle against Ransomware has resulted in many companies and organizations investing in their backup solutions to restore their environment if it gets encrypted Unfortunately, that’s no longer enough. The threat actors modus operandi has adapted and changed to those protections, and they now also using blackmail to get more money with ransom notes exceeding USD 50M. The ransom note […]

TIBER – improving the financial stability of Sweden

08 Sep 2020 in Cyber Security

TIBER – improving the financial stability of Sweden Do you know what TIBER is? Have you read the public TIBER framework documents and feel overwhelmed? Then read on as I explain how to prepare for and implement the TIBER framework. Let’s get started with some background information about the origins of the TIBER framework. TIBER […]