Skip to content Skip to footer

The Solarwinds Tipping Point

Published by: Digicert

In December 2020, hackers had broken into several federal government computer networks and the attack was traced back to a software system, called Orion, an IT management program built and sold by the Texas-based cybersecurity company SolarWinds.
Signing software is important in and of itself, but it's all too easy to overlook the management of signing policies and practices—and that's where we find security gaps that can be exploited. When it comes to software security, the choice is binary. You can choose best practices, or you can choose to leave your supply chain open to attack.
The vulnerability that led to the SolarWinds data breach wasn't caused by weak security tools. It was a failure to implement every step on the list of code signing best practices. How could the SolarWinds attack have been prevented?

Read More

By submitting this form you agree to Digicert contacting you with marketing-related emails or by telephone. You may unsubscribe at any time. Digicert web sites and communications are subject to their Privacy Notice.

By requesting this resource you agree to our terms of use. All data is protected by our Privacy Notice. If you have any further questions please email

digital route logo
Lang: ENG
Type: Whitepaper Length: 9 pages

More resources from Digicert