SolarWinds bolsters its security response capabilities following hack

The company is in the process of 'creating a new, highly-secure environment based upon the latest practices'

SolarWinds has revealed that it is in the process of bolstering its cyber security response and monitoring capabilities, seven weeks after a “highly sophisticated” cyber attack on its IT management systems.

The software provider is working on expanding teams, techniques, and processes responsible for monitoring, responding, and “hunting” for threat actors such as those who coordinated December’s attack.

In a webcast hosted by the company, SolarWinds' security advisor and former Facebook CSO Alex Stamos said that enterprises should not only invest in appropriate security tools, but also “embrace the inevitability” that they, too, could be hacked.

“The unfortunate truth is when you go against one of these adversaries of this level, you're dealing with people that have a huge amount of time and motivation to break into your company,” he said. 

“People that have dedicated research teams that are looking for zero-day in the products you use, dedicated development teams who are building new tools and new command and control systems to break in, that are not going to be caught by existing antivirus, and that come in every day with their job to break into your company.

Related Resource

How to improve cyber security for remote working

13 recommendations for security from any location

How to improve cyber security for remote working - whitepaper from MimecastDownload now

Stamos recommended that, instead of focusing solely on preventing the initial compromise, enterprises must take into consideration their detection, monitoring, alerting, and response strategies and tools on every step of the cyber kill chain.

He also advised companies to measure the effectiveness of their response by using red team and tabletop exercises, as well as employing “trusted third parties” to handle the top two percentile of activity, leaving the 98% for internal teams.

Stamos was taken on by SolarWinds last month in order to help manage the software provider’s recovery from December’s cyber attack, alongside former CISA head Chris Krebs. Krebs and Stamos have recently formed a security consulting business, of which expertise SolarWinds is expected to benefit from.

During the webcast, the company also announced that it has secured its existing build environment and is in the process of “creating a new, highly-secure environment based upon the latest practices”, which includes integrating a systems development life cycle in all the environments concerned with product development.

Featured Resources

Preparing for AI-enabled cyber attacks

MIT technology review insights

Download now

Cloud storage performance analysis

Storage performance and value of the IONOS cloud Compute Engine

Download now

The Forrester Wave: Top security analytics platforms

The 11 providers that matter most and how they stack up

Download now

Harness data to reinvent your organisation

Build a data strategy for the next wave of cloud innovation

Download now

Recommended

McAfee’s zero trust solution strengthens private applications’ security
cyber security

McAfee’s zero trust solution strengthens private applications’ security

3 Aug 2021
Senate report slams agencies for poor cyber security
cyber security

Senate report slams agencies for poor cyber security

3 Aug 2021
Mastering endpoint security implementation
Security

Mastering endpoint security implementation

3 Aug 2021
86% of organizations expect a cyber attack in the next 12 months
cyber attacks

86% of organizations expect a cyber attack in the next 12 months

3 Aug 2021

Most Popular

RMIT to be first Australian university to implement AWS supercomputing facility
high-performance computing (HPC)

RMIT to be first Australian university to implement AWS supercomputing facility

28 Jul 2021
Samsung Galaxy S21 5G review: A rose-tinted experience
Mobile Phones

Samsung Galaxy S21 5G review: A rose-tinted experience

14 Jul 2021
Zyxel USG Flex 200 review: A timely and effective solution
Security

Zyxel USG Flex 200 review: A timely and effective solution

28 Jul 2021