The Solarwinds Tipping Point
In December 2020, hackers had broken into several federal government computer networks and the attack was traced back to a software system, called Orion, an IT management program built and sold by the Texas-based cybersecurity company SolarWinds.
Signing software is important in and of itself, but it's all too easy to overlook the management of signing policies and practices—and that's where we find security gaps that can be exploited. When it comes to software security, the choice is binary. You can choose best practices, or you can choose to leave your supply chain open to attack.
The vulnerability that led to the SolarWinds data breach wasn't caused by weak security tools. It was a failure to implement every step on the list of code signing best practices. How could the SolarWinds attack have been prevented?
Read More
By submitting this form you agree to Digicert contacting you with marketing-related emails or by telephone. You may unsubscribe at any time. Digicert web sites and communications are subject to their Privacy Notice.
By requesting this resource you agree to our terms of use. All data is protected by our Privacy Notice. If you have any further questions please email dataprotection@techpublishhub.com
More resources from Digicert
TLS Best Practices
The truth is, a simple lapsed certificate can become a time-consuming headache. Unfortunately, 60% of organizations have experienced a certificate-...
The Solarwinds Tipping Point
In December 2020, hackers had broken into several federal government computer networks and the attack was traced back to a software system, called ...
Where you need trust, you need PKI
On a rainy summer day in 2013, a small, float-equipped plane stalled while flying low over the mountains near Petersburg, Alaska. There were six pa...
