SolarWinds incident response: Live demo from the trenches

Infosec_SamInfosec_Sam Admin Posts: 527 Admin
edited December 2020 in Incident Response

It’s been a busy week for cybersecurity professionals as they respond to the SolarWinds breach. On December 13, the Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive to immediately “disconnect or power down SolarWinds Orion products" as they were being actively exploited by malicious actors.

Infosec Skills author and KM Cyber Security managing partner Keatron Evans is helping numerous clients respond to the breach. In this live discussion and incident response demo (recorded Friday, December 18) he covers:

– What happened with the SolarWinds supply chain attack
– Immediate action you can take to protect your systems
– Industry responses to help mitigate the incident
– Live demo of Snort, memory forensics and Zeek
– Q&A with live attendees

You can watch the recoding here: https://www.youtube.com/watch?v=5lc4HtmEYl4

Community Manager at Infosec!
Who we are | What we do
Sign In or Register to comment.