![]() The SolarWinds attack is unique in that the hackers did not exploit a vulnerability in an application, rather they broke into the company and attacked the development pipeline. ![]() The US government uses SolarWinds, so by attacking SolarWinds in a way that would infiltrate the US government, the attacker effectively got their target. This technique is called a "supply chain attack," because instead of targeting the victim directly, the attacker damaged something higher up the supply chain and simply waited. In December 2020, an advanced persistent threat attacked many companies by injecting malicious code into a vendor application that belonged to SolarWinds. The SolarWinds Hack for Java Developers February 09, 2021
0 Comments
Leave a Reply. |