As the impact of the recent SolarWinds cyberattack continues to emerge, the method of attack is becoming clearer: According to several reports, the attackers used malicious Trojan software updates for SolarWinds’ Orion IT monitoring solution, signed with valid digital signatures, to gain network access ....Read Detail
Let’s look at some other Security Best Practices to mitigate your risk of SolarWinds type of attack :
Adopt a “zero trust” approach
Take your workforce passwordless
Employ adaptive risk-based authentication with policy engine
Establish an enterprise certificate strategy
Use hardware security modules (HSMs) for a strong root of trust
Apply strong policy controls with regular auditing