Read the original article: How X.509 Certificates Were Involved in SolarWinds Attack | Keyfactor
For a moment, we were ready to put 2020 behind us, until this week.
It started with reported theft of FireEye’s Red Team tools, and then came the bigger news. FireEye and the U.S. Treasury and Commerce departments had been infiltrated via SolarWinds Orion software updates, which included malicious code injected by Russian-backed hacking group Cozy Bear (APT 29).
This news doesn’t just affect SolarWinds, FireEye, and U.S. government agencies – it affects us all. When a nation-state attacks one of us, they attack us all, and we all feel the sting. It’s a sobering reminder of our everyday reality: anyone can be breached.
Read the original article: How X.509 Certificates Were Involved in SolarWinds Attack | Keyfactor