Hackers broke into the networks of federal agencies and FireEye by compromising SolarWinds’ Orion Network Management Products. The cyber espionage group has tampered with updates released by IT company SolarWinds, which provides its products to government agencies, military, and intelligence offices, two people familiar with the matter told the Reuters agency. Nation-state actors, allegedly Russia-linked hacked, have compromised the networks of several US government agencies, including the US Treasury, the Commerce Department’s National Telecommunications and Information…

eXtended Detection & Response (XDR) has become an industry buzzword promising to take detection and response to new heights and improving security operations effectiveness. Not only are customers and vendors behind this but industry groups like Open Cybersecurity Alliance (OCA) share this same goal and there are some open projects to leverage for this effort. XDR Promise Let’s start with an understanding of XDR. There is a range of XDR definitions but at the end…

Nation State hacks major IS Software vender by James Gorman, CISO, Authx What happened when one of the leading IT support venders in the world, leading government agencies the world over and up 18,000-33,000[1] companies running the affected version (2019.4 HF 5 and 2020.2 with no hotfix or 2020.2 HF 1)[2] of SolarWinds Orion software. Here’s what happened: The threat actor – indicated to be a nation state in Microsoft’s Threat Intelligence Center’s release[3] – was able to compromise the…

An Ohio man has admitted to conspiring with his spouse to steal scientific trade secrets from a children’s hospital and sell them to the People’s Republic of China.  Former Dublin resident Yu Zhou and his 47-year-old wife, Li Chen, confessed to establishing a company in China to personally profit from cutting-edge research work done at Nationwide Children’s Hospital in Columbus, Ohio. Zhou and Chen worked in separate medical research labs at NCH’s Research Institute for 10 years each,…

Jack Wallen explains why he’s not worried that the rise in popularity of the Linux operating system will mean your open source platforms will be vulnerable to attacks. Linux powers big business–of that there is no debate. With more and more manufacturers selling Linux preinstalled on desktops and laptops, the writing on the wall is clear: Linux popularity is growing faster than most expected.  For some, that means the rise of attacks on the platform…

Linux attacks are rising: Why I’m not concerned Length: 2:33 | Dec 15, 2020 Jack Wallen explains why he’s not worried that the rise in popularity of the Linux operating system will mean your open source platforms will be vulnerable to attacks. Source link

A hospital in California has notified 67,000 patients that their personal data may have been exposed in a cyber-attack. In a letter dated December 8, Sonoma Valley Hospital told patients that it was one of several American healthcare providers victimized two months ago in a wide-sweeping ransomware campaign. “SVH experienced a ransomware cyber-attack on October 11, 2020 by what is believed to be a Russian threat actor,” wrote the hospital. “This event was part of a broader attack on…