Solarwinds Software Active Exploitation Reinforces the need to enforce password policies
FireEye, a top security consultancy, was the victim of a sophisticated hack that led to the exfiltrationofnumeroustools used for testing and potentially exploiting security vulnerabilities.
Why are secure passwords important?
It appears that hackers were able exploit a weak password to the Orion software updates server to upload a malicious executable which installed a backdoor in any environment that had the affected Orion upgrade. We urge all companies and consumers alike to do the same.
Review Your Password Complexity and enforce your Organization’sPasswordPolicy
IE has always encouraged our customers to have policies in place for complex passwords. This unfortunate situation shows the potential damage and scope that can be caused by a simple exception to a policy.
For further information, please refer tohttps://us-cert.cisa.gov/ncas/alerts/aa20-352a
Sean Rollman joined IE in 2005. He has more than 20 years of experience in the design, implementation, management, and support of complex technology solutions for enterprise and mid-level customers. His varied experience includes the development and oversight voice, video, wireless, LAN, and WAN solutions for customers in many verticals, both domestically as internationally.
Sean Rollman is your contact