moversnax.blogg.se

22 November 2022 - 05:56
Solarwinds compromise
Allmänt
Solarwinds compromise












All developers must be running the Appgate SDP client on their devices and be properly authenticated with multiple factors before they can access any build or source code system. In recognition of this, over the years we have put in place a robust set of security controls, automated tests, and checks and balances to reduce the likelihood of any type of compromise of our software.Ĭurrent information from the SolarWinds 8-K indicates that the malicious actor was able to compromise some aspect of the SolarWinds Orion build system, with the end result being the production and distribution of a valid, signed DLL that contained the malicious code.Īs such, let’s examine how we approach these aspects of our software development systems and processes.įirst of all, from a holistic perspective, all of our internal source code and build systems are protected by the internal deployment of our own product, Appgate SDP. Our customers trust our software to control their users’ access to their organization’s most valuable and sensitive assets, deploying it throughout their enterprise. Taking a step back, we are of course concerned about this type of attack as an enterprise, but also in our special role as a security vendor. As a result, neither our company network nor the Appgate SDP product infrastructure was exposed to this threat actor or this malicious code in any way.Appgate does not and has not used the compromised SolarWinds product on any of our networks.As such, we want to proactively communicate on this topic, and also take the time to explore in more depth our approach to ensuring the security of our product and its supply chain.įirst and foremost, Appgate and the Appgate SDP product were not at risk or impacted in any way by the SolarWinds compromise. This actor embedded malicious software into an official signed SolarWinds release and then used that software to attack enterprise networks onto which it was deployed.Īs a security software vendor with our Appgate SDP product deployed across our customers’ enterprise networks, we recognize the important role we play and take this responsibility seriously. Like many of you, we’ve been closely following the recent news about a compromise of the SolarWinds network monitoring software by a malicious state actor.

solarwinds compromise solarwinds compromise

Providing consumers with seamless access while reducing risk Solving today's network access challenges with Zero Trust security














Solarwinds compromise
0 kommentar(er)
Om Mig: