Reply to post: What.....No mention of attacks like the SolarWinds compromise?....

CISOs face 'perfect storm' of ransomware and state-supported cybercrime

Anonymous Coward
Anonymous Coward

What.....No mention of attacks like the SolarWinds compromise?....

.....where a legitimate update to a well known application......

.....resulted in the start of an attack by bad actors!!!

So.....do these CISO folk actually know that the development environments of EVERY software supplier (and some hardware suppliers) is secured against development-based attacks?

Ref: https://wiki.c2.com/?TheKenThompsonHack << This one is about internal hacks

Ref: https://www.npr.org/2021/04/16/985439655/a-worst-nightmare-cyberattack-the-untold-story-of-the-solarwinds-hack?t=1647634891383

Ref: https://www.tomshardware.com/uk/news/cisco-backdoor-hardcoded-accounts-software,37480.html << ...and these ones might have originated in Fort Meade

No....I didn't think so!

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon