Solarwinds Revisited and Tech Policy under a Biden Administration

Blue Security

English - January 11, 2021 05:00 - 35 minutes - 32.5 MB - ★★★★★ - 3 ratings
Technology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed

Previous Episode: Information Security Tips & Tricks for Parents

Next Episode: Secure Messaging

This week, Adam and Andy revisit some more guidance that has come out about Sunburst/Solarigate since the initial breach. Additionally, they share some thoughts about this week's insurrection at the US Capitol and the cybersecurity implications. Finally, with a Biden administration and a Democratic controlled government, Andy and Adam speculate on what might be taken up as priority when it comes to tech policy.

Documentation:

Microsoft Solarigate Resource Center

Using Splunk to Detect Sunburst Backdoor

Analyzing Solorigate, the compromised DLL file that started a sophisticated cyberattack, and how Microsoft Defender helps protect customers

Using Microsoft 365 Defender to protect against Solorigate

M365 advanced hunting queries

Understanding "Solorigate"'s Identity IOCs - for Identity Vendors and their customers

Protecting Microsoft 365 from on-premises attacks

Contact:

Twitter: @bluesecuritypod

Instagram: @bluesecuritypodcast

Andy Jaw