{"id":11230,"date":"2024-07-08T13:43:20","date_gmt":"2024-07-08T11:43:20","guid":{"rendered":"https:\/\/cyberinsights.iainfraser.net\/?p=11230"},"modified":"2024-11-21T14:11:28","modified_gmt":"2024-11-21T13:11:28","slug":"insecure-dns","status":"publish","type":"post","link":"https:\/\/smecyberinsights.co.uk\/index.php\/2024\/07\/08\/insecure-dns\/","title":{"rendered":"THREAT INTEL: SOLAR WINDS – Over 18,000 Clients exposed in the most invasive cyberattack in history"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t<\/a>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\"security-breach-hacker-cyber-crime-privacy-policy-concept\"\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t
Image Credit: rawpixel.com\/FreePik<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t<\/a>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

Gibraltar: Monday 08 July\u00a0 2024 at 12:50 CET<\/p>\n

THREAT INTEL: SOLAR WINDS: the most invasive cyberattack in history, impacting 18,000 clients, including critical U.S. government agencies<\/strong><\/p>\n

By Andy Jenkinson \u2013 Guest Contributor |\u00a0 Group CEO\u00a0Cybersec Innovation Partners<\/a>
\nvia CYBERInsights<\/a>
\nFirst for\u00a0SME Cybersecurity News<\/a>
\nGoogle Indexed on 080724 at 13:20 CET<\/a><\/p>\n

#CyberInsights #SMECybersecurityNews #Cybersecurity #WhitethornShield #InternetSecurity #DNS #PKI<\/em><\/p>\n

\n
\n

In December 2020, the world witnessed one of the most invasive Cyberattacks<\/strong> in history, targeting SolarWinds<\/a><\/strong> and impacting 18,000 clients, including critical U.S. government agencies.<\/span><\/span><\/p>\n

At the time we extensively researched this incident and provided crucial evidence to the Senate Intelligence Committee, we authored “Stuxnet to Sunburst: 20 Years of Digital Exploitation.”<\/p>\n

It was later confirmed, perfectly aligned to our research and findings, SolarWinds<\/strong><\/a> had been exploited by compromised Not Secure and Insecure subdomains and servers.<\/p>\n

Despite our ongoing efforts to assist SolarWinds<\/strong><\/a> and Tim Brown<\/strong><\/a> in addressing the identified security vulnerabilities, it is with profound disappointment that we report their continued exposure to Cyber Threats<\/strong>.<\/p>\n

Our recent investigation uncovered alarming evidence of NOT SECURE SolarWinds Orion subdomains and INSECURE DNS servers<\/strong>, illustrating a persistent negligence in SolarWinds<\/a><\/strong> cybersecurity measures.<\/p>\n

The original exploitation of these weaknesses by malicious actors, who injected harmful code into the Orion<\/strong> software (Sunburst<\/strong>) which was subsequently trusted and downloaded automatically by users\u2014highlighted a severe oversight that remains unrectified.<\/p>\n<\/div>\n<\/div>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"AJ_080724\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t
\n
\n

SolarWinds<\/strong><\/a>‘ failure to secure their digital infrastructure, even after the catastrophic breach and our repeated offers of assistance, is inexcusable.<\/p>\n

This negligence not only compromises their clients’ sensitive data but also endangers national security. The persistent vulnerability of SolarWinds<\/a><\/strong>‘ Assets underscores a critical need for immediate, robust security enhancements to prevent future incidents.<\/p>\n

As we prepare to present our findings at this weeks Forensic Science Guild, we publicly call upon SolarWinds<\/a> <\/strong>to take urgent action. The ongoing risks posed by their insecure systems demand accountability and immediate remediation.<\/p>\n

It is imperative that SolarWinds<\/strong><\/a> acknowledges the gravity of their security lapses and implements comprehensive measures to safeguard against further Cyberattacks<\/strong>. The time for action is now, before another devastating breach occurs, or to halt the ongoing MiTM<\/strong> attacks in flight.<\/p>\n

Cybersec Innovation Partners<\/a>
\nU.S. Securities and Exchange Commission<\/a>
\nInformation Commissioner’s Office<\/a>
\nGCHQ<\/a>
\nNational Security Agency<\/a>
\nNational Crime Agency (NCA)<\/a>
\nNational Cyber Security Coordinator<\/a>
\nCentral Intelligence Agency<\/a>
\nCNBC<\/a>
\nABC News<\/a>
\nBBC News<\/a>
\nITV News<\/a>
\nInternetSecurity<\/a>
\nDNS<\/a> PKI<\/a><\/p>\n

 <\/p>\n<\/div>\n<\/div>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\tLearn More \/...<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t

About Andy Jenkinson<\/span><\/strong><\/p>\n

Group CEO CIP. Fellow Cyber Theory Institute. Director Fintech & Cyber Security Alliance (FITCA) working with Governments. Recognised Expert in Internet Asset & DNS Vulnerabilities.<\/span><\/strong><\/p>\n

Andy Jenkinson is a senior and seasoned innovative Executive with over 30 years\u2019 experience as a hands-on lateral thinking CEO, coach, and leader. A \u2018big deal\u2019 business accelerator, and inspirational, lateral thinker, Andy has crafted, created, and been responsible for delivering 100\u2019s \u00a3 millions of projects within the Cyber, Technical, Risk and Compliance markets for some of the world\u2019s largest, leading organisations. Andy has a demonstrable track record of largescale technical delivery and management within many sectors including the Professional, Managed, and Financial Services.<\/p>\n<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
\n\t\t\t\t\t\n\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\tLearn More \/...<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t\t
\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

Image Credit: rawpixel.com\/FreePik Learn More \/… Learn More \/…<\/p>\n","protected":false},"author":1,"featured_media":11234,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"cybocfi_hide_featured_image":"yes","footnotes":""},"categories":[440],"tags":[439],"ppma_author":[415],"class_list":["post-11230","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyberthreat-intel","tag-cyberthreat-intel"],"featured_image_urls":{"full":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept.jpg",786,590,false],"thumbnail":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept-150x150.jpg",150,150,true],"medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept-300x225.jpg",300,225,true],"medium_large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept-768x576.jpg",640,480,true],"large":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept.jpg",640,480,false],"1536x1536":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept.jpg",786,590,false],"2048x2048":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept.jpg",786,590,false],"covernews-featured":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept.jpg",786,590,false],"covernews-medium":["https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/07\/security-breach-hacker-cyber-crime-privacy-policy-concept-540x340.jpg",540,340,true]},"author_info":{"display_name":"Cybersecurity Journalist Iain Fraser","author_link":false},"category_info":"SME CYBER\/THREAT INTEL<\/a>","tag_info":"SME CYBER\/THREAT INTEL","comment_count":"0","authors":[{"term_id":415,"user_id":0,"is_guest":1,"slug":"cybersecurity-journalist-iain-fraser","display_name":"Cybersecurity Journalist - Iain Fraser","avatar_url":{"url":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png","url2x":"https:\/\/smecyberinsights.co.uk\/wp-content\/uploads\/2024\/10\/index_image440-removebg-preview.png"},"0":null,"1":"","2":"","3":"","4":"","5":"","6":"","7":"","8":""}],"_links":{"self":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/11230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/comments?post=11230"}],"version-history":[{"count":1,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/11230\/revisions"}],"predecessor-version":[{"id":15947,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/posts\/11230\/revisions\/15947"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media\/11234"}],"wp:attachment":[{"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/media?parent=11230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/categories?post=11230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/tags?post=11230"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/smecyberinsights.co.uk\/index.php\/wp-json\/wp\/v2\/ppma_author?post=11230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}