The biggest hack ever in the digitized world: at least two independently operating hacking companies have been building backdoors into digitally signed updates to SolarWinds network software since mid-2019. Apparently, government agencies and the world’s largest companies across all industries (defense contractors, technology companies, banks, consultants, pharma/chemical, utilities, telecoms and commodities) in North America, Europe, Asia, the Middle East and also Germany have been affected – especially their cloud usage. There was access to classified data up to. This made it possible to manipulate not only IT but production control systems / OT also. The extent of the damage is not even foreseeable, the attacks go on – may be for years! However, US authorities such as the FBI and others are already calling the attack the ‘Pearl Harbor of the information age’ and are anticipating further attackers and attacks.
How exactly could this happen? And how can such attacks using zero-day-vulnerabilities and backdoors be detected?
softScheck GmbH recaps this latest incident and explains the latest insights. In order to get a deeper understanding of the attack, the procedure of such a hack will be shown by a presentation, where a backdoor is installed into a program via a signed update. Lessons will be drawn and explained how backdoors can be methodically identified and closed.
Agenda
1. introduction
2. solarwind hack
3. demo: installing backdoors
4. identifying backdoors
Date 2021: February 21 – 16:00 – 17:00
Duration: 60 minutes
Language: English
Nominal sum: 44 € (plus VAT)
Prerequisites: Basic IT knowledge
Delivery: This workshop is offered as a webinar and therefore completely digital. This saves you time compared to the classic workshop: There is no need to travel to and from the workshop. If required, we can also offer this in-house at the customer’s premises. The number of participants is limited to 18.
Technical requirements: The workshop is conducted using the browser-based software BigBlueButton.
We recommend:
– A current and popular web browser (e.g. Mozilla Firefox – or also Google Chrome, Microsoft Edge).
– A fast and stable internet connection (preferably no WLAN)
– Headphones or speakers on your end device (desktop PC / laptop / tablet)
At the beginning of the webinar, we turn off all cameras and all microphones to protect your privacy. If you have any questions, you are of course welcome to ask them in text form in the chat, or with a short note very welcome in person – only for this we would turn on your camera and microphone after your explicit permission.
Registration and organizational questions:
https://www.softscheck.com/en/contact-us-en/#workshop-solarwinds