Global Security Forum

Security Global Forum

Our mission is to provide clients with an online user community of industry peers and IBM experts, to exchange tips and tricks, best practices, and product knowledge. We hope the information you find here helps you maximize the value of your IBM Security solutions.

View Only

Back to discussions

Expand all | Collapse all

SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

1. SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

Like
Wendy Batten
Posted Mon December 21, 2020 05:46 PM

Reply
Please read our recent blog on this topic by Gladys Koskas to learn more. "This week, and based on current information as of the time of publication, SolarWinds announced a cyberattack that inserted a vulnerability into the SolarWinds^® Orion^® Platform software builds for versions 2019.4 HF 5, 2020.2 with no hotfix installed, and 2020.2 HF 1. This vulnerability could enable an attacker to compromise the server(s) on which SolarWinds runs, and thus gain a foothold in the victim's network. Post compromise, the attacker can conduct lateral movement, data exfiltration and other threat activity." Read Blog here.

------------------------------
Wendy Batten
Community Manager
IBM Security
Cambridge MA
wjbatten@us.ibm.com
------------------------------

Global Security Forum

Security Global Forum

SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

1. SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

Additional
Resources

Office

Quick Links

Global Security Forum

Security Global Forum

SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

1. SUNBURST indicator detection in QRadar [Solarwinds cyberattack]

Additional Resources

Office

Quick Links

Additional
Resources