The FireEye and Solarwinds breach.
I was drinking my coffee this morning and I read that FireEye was Breached. What? I read that a second time. This time I also found out that their testing tools were also stolen. This is bad, I thought, because FireEye is used in many industries, but to suffer a Breach and lose your testing tools will certainly compromise their reputation.
How did this happen?
According to FireEye’s website, this came as part of a Global Campaign[1]. More importantly, they are indicating that users of the SolarWinds Orion network monitoring product was the source of the Breach.
The issue here is that they gained access to the internal resources and utilized these resources internally to hide and disguise their activity. They indicated that these activities occurred earlier this year, sometime in the Spring of 2020.
When was the last time your company had a formal security assessment? How about an assessment for the software you use internally as well? While you cannot be everywhere all at the same time, mandating security assessments for the vendor tools you use is a good way to delegate. Don’t forget to have an assessment performed on the network, your design, and security policies and procedures.
Everyone thinks that they have it covered, until they don’t. It’s what they are missing that causes the Breach.
Everyone thinks that they have it covered, until they don’t. It’s what they are missing that causes the Breach. While we understand that no one wants to be told that they missed something.
Which is better
- Finding a problem and fixing it before a Breach,
- Announcing it to the world that you’ve had a Breach?
… the cost of a Breach is very costly usually $200k to $3.8M or more. These are also known as Business ending events.
The cost of a Security Assessment is generally a fixed priced and is easily absorbed by the business. However, the cost of a Breach is very costly ($200k to $3.8M or more), and it is shared by the business and all of its clients.
Security is our Business
There are many ways to effect change in the organizations. The most beneficial are the ones that are driven from the top down. While organizations were built to support the business internally, the advancement of the attackers to gain access to the internal resources has changed the way we need to work on Cybersecurity.
Here are a few quick hits that will move the needle for you more in your favor.
- Make time for a Security Assessment as recommended
- Develop your company’s Policies and Procedures
- Employ a comprehensive monitoring appliance to maintain your company’s security.
As we have seen in the FireEye Breach and other Breaches, the attacks are from the inside – out. Meaning that they were able to get past the Firewalls, and not get detected by Virus scanners or other current technologies. These tools are all based on their ability to identify new attempts with the current Known threats. That leaves all of the previously successful Breaches, and attacks using unknown threats exposed.
The ITS SafeTM security appliance includes out of the box capabilities to start working right away. ITS Safe is built to Detect, Defend against and Destroy Intruders. We are shifting organizations from a traditional security approach to continual assurance.
By implementing ITS Safe, the detection of activities inside allows us to eliminate the threats that other tools miss entirely. Get ITS Safe Today to keep your business safe.
Minimizing the threats of attacks on employees and businesses are the basis for the development of the ITS SafeTM Managed Security Appliance. Because attacks can happen anytime, the ITS Safe appliance continually monitors activities inside the network for both Inbound and Outbound traffic.
Sign up today to get a complimentary consultation
https://its-safe.it-security-solutions.com/managed-security-service-for-your-organization
https://IT-Security-Solutions.com – Contact me now
We are your trusted cyber security partner.
[1] A Global Campaign makes sense because they are all connected to the Internet, and that’s still a Global network, if my memory serves me right.
Thank you!!1