登录查看更多内容

Illustrated SolarWinds Orion Supply-chain Cyber Attack

Henry Jiang

发布日期: 2021年1月14日

+ 关注

John Parchman, MS, MBA, CISSP, CCSP

Cybersecurity AI Leader | Cloud Security Innovator | FedRAMP & NIST Compliance Specialist | SaaS Transformation Expert

3 年

As complicated as the attack was, let's not forget how it was discovered. Somebody saw something and Said something. An unusual new device was looking for escalated privileged access and a system analyst raised a red flag, starting to ask questions. This person is a hero and we should be celebrating them.

Hang Pan

Cloud & On Premise Management | Tech Advocate

4 年

Thanks for the detail map

Andy Kalluri

IT Consultant at FixIT IT Solutions, Victoria, Australia

4 年

Good job

Thomas J Fusco Jr.

4 年

well Done Henry, may I borrow?

查看更多评论

要查看或添加评论，请登录

Henry Jiang的更多文章

DevSecOps? Speak the Language Your Team Understands

2025年1月21日

DevSecOps? Speak the Language Your Team Understands

How often do you hear phrases like: “We are shifting left with our security program” or “We embrace the DevSecOps model…
Cybersecurity Domain Map ver 3.0

2021年3月11日

Cybersecurity Domain Map ver 3.0

Since the first publication of the Map of Cybersecurity Domains rev. 2.

91 条评论
Directors Keep a Pulse on Cybersecurity

2021年1月21日

Directors Keep a Pulse on Cybersecurity

Maintaining a strong understanding of your organization's cyber risk and vulnerabilities is imperative. To help…

2 条评论
The fundamentals about data protection

2018年6月8日

The fundamentals about data protection

When a data protection conversation took place, often one can feel overwhelmed by the complexity of the topic, and many…

4 条评论
An illustration of ROCA (Return of Coppersmith Attack) vulnerability

2017年10月23日

An illustration of ROCA (Return of Coppersmith Attack) vulnerability
An infographic about KRACK (aka WiFi WPA2 vulnerability)

2017年10月20日

An infographic about KRACK (aka WiFi WPA2 vulnerability)

THE PROBLEM: The original WPA2 protocol is vulnerable since its introduction in 2004. The vulnerability allows…

22 条评论
The myth: "My compute environment is hosted in AWS, therefore my data is secure...."

2017年9月18日

The myth: "My compute environment is hosted in AWS, therefore my data is secure...."

Service organization, cybersecurity related certifications and accreditations As a cybersecurity professional, we are…

11 条评论
Cybersecurity, privacy, and data protection related laws and regulations

2017年8月23日

Cybersecurity, privacy, and data protection related laws and regulations

Update Sept 6, 2017 Thanks to the valuable input from Alessandro Bottonelli, I updated the map under the EU section to…

21 条评论
Artificial intelligence, machine learning, and deep machine learning; are they all the same?

2017年7月28日

Artificial intelligence, machine learning, and deep machine learning; are they all the same?

Just came back from BlackHat 2017. One could not help to notice the prevalent use of the words such as "AI," "machine…

6 条评论

See all articles

Henry Jiang的更多文章

DevSecOps? Speak the Language Your Team Understands

Cybersecurity Domain Map ver 3.0

Directors Keep a Pulse on Cybersecurity

The fundamentals about data protection

An illustration of ROCA (Return of Coppersmith Attack) vulnerability

An infographic about KRACK (aka WiFi WPA2 vulnerability)

The myth: "My compute environment is hosted in AWS, therefore my data is secure...."

Cybersecurity, privacy, and data protection related laws and regulations

Artificial intelligence, machine learning, and deep machine learning; are they all the same?