Toggle navigation
TWunroll
TWunroll
faq
Contact US
#Sunburst
FireEye
FireEye
As part of our commitment to our customers and community, we are continuing to take action to protect orgs from the SolarWinds supply chain attack. 1/5https://feye.io/3gKoMBp SUNBURST is the malware
Read more
Itay Cohen🌱
megabeets_
The attackers behind the #SUNBURST malware put a lot of effort into trying to avoid detection by analysts and security vendors. Not only this, but they also tried to make
Read more
Costin Raiu
craiu
Looking at possible connections between #Sunburst and #Kazuar, a thread: #SolarWinds #UNC2452 #DarkHalo On Dec 21, 2020, as we were observing the great conjunction between Saturn and Jupiter, one of
Read more
Good Dog
GoodDog94619152
The B2, "Spirit" Bomber.You can't see it on radar - but, it's presence becomes apparent after it's passing.Interesting code at the end ... no?Did you hear that Canadian Government? Identify
Read more
Kyle Hanslovan
KyleHanslovan
Only 1 / 67 antivirus engines list SUNBURST backdoor as malicious - SolarWinds.Orion.Core.BusinessLayer.dll https://www.virustotal.com/gui/file/32519b85c0b422e4656de6e6c41878e95fd95026267daab4215ee59c107d6c77/detection #SUNBURST #UNC2452 So
Read more
John Basham 🇺🇲
JohnBasham
FLASH: "Emergency Directive 21-01 calls on all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately."-@CISAgov Read more: http://cisa.go
Read more
John Wetzel
johnwetzel
Let's talk about attribution. In a few weeks, we've gone from discovery of #SUNBURST and the #SolarWindsHack to public attribution of Russia. But there is currently scant public evidence for
Read more
780th Military Intelligence Brigade (Cyber)
780thC
Joint Statement by the Cyber Unified Coordination Group (UCG), composed of the FBI, CISA, and ODNI with support from NSA: "This work indicates that an APT actor, likely Russian in
Read more
Infosec Ghost
InfosecGhost
2021 - The rules are different now. Thread. Polarization. People had more time than ever in 2020, and did less research for themselves. I had less time and I still
Read more
Elena RN ❦
Ek7_PRN
THREAD: Corrupted software provided by SolarWinds Worldwide LLC, and its connection with Dominion Voting Systems, casts shadow on the security of electronic voting systems used in 2020 Elections.Shoutout to @SpyGateDown
Read more
Kyle Hanslovan
KyleHanslovan
LOTS of folks asked me about the sophistication of these attacks, the response actions I expect will happen, and the always fun attribution. This thread will cover those topics. (cue
Read more
Ramin
MalwareRE
As part of our commitment to keeping our customers/community protected & informed, we are releasing a blog that shines light on transition between Stage 1 and 2 of #Solorigate/#SUNBURST campaign,
Read more
Cyber Statecraft
CyberStatecraft
Since 2010, there have been at least 31 distinct attacks targeting updates in the software supply chain, of which 17 compromised build servers or altered code. Of those, more than
Read more
Ean Meyer: Non-Profit Stonks and Stonk Accessories
EanMeyer
IR FOLKS - Look here - more in comments - If you are on a bridge right now... you need to jump on this GitHub... FireEye released signatures (Snort, YARA,
Read more
Jake
JCyberSec_
So where are we with SolarWinds Orion and what have we learnt since the original disclosure. A thread to pull public information together...1/n#SolarWinds #SolarWindsOrion A good thread to get a
Read more
Katie Nickels
likethecoins
A brief thread on the @CrowdStrike blog on SUNSPOT...as I read it. This confirms CrowdStrike was one of SolarWinds' IR firms, which we'd heard rumblings of before. Why do I
Read more
‹
1
2
3
›
By continuing to use the site, you are consenting to the use of cookies as explained in our
Cookie Policy
to improve your experience.
I agree
