|
|
|
|
|
|
by nominated1
1934 days ago
|
|
|
> Could SolarWind have been too difficult for the KGB to use them in an enablement operation? Yes, it is possible to achieve that level of security. Creating a strong fast detection capability with rapid remediation and incident response will make it hard for attackers to dwell for any length of time, or persist on the system after they gain access. It requires vigilance and some effort, but it can be done. Of course, SolarWind wasn’t close to reaching that level. Who is responsible for vetting these partners? What’s the process look like? Surely it’s more than “trust us, we gotz great securties”. |
|
|