Supply chain attacks are not common, and the SolarWinds Supply-Chain Attack is one of the most potentially damaging attacks we’ve seen in recent times. SolarWinds, as you may know is a software company that primarily deals in systems management tools used by IT professionals. The most widely deployed SolarWinds product is Orion, which is a Network Management System (NMS).
NMS is a prime target for attackers for a number of reasons and today on CGE Radio, Coleman Mehta, Senior Director, Policy at Palo Alto Networks will give an overview of this and talk about how organizations (and there are over 300,000 of them or customers of SolarWinds with many of them being heavy hitters, from the US Federal government, Fortune 500 companies, and other global organizations) can defend themselves.
In his current role, Coleman is responsible for his company’s engagement on public policy issues such as cybersecurity and data privacy, IT modernization, cloud computing, high-skilled immigration, and more.
Coleman previously worked as a career civilian U.S. government official at the White House National Security Council, serving as Director for Legislative Affairs. He led the NSC’s legislative strategy on cybersecurity and technology issues. Prior to his tenure at the White House, Coleman worked at the U.S. Department of Homeland Security, leading the Department’s negotiations with Congress on several high-profile cybersecurity bills.
Hear more about an overview of supply chain attacks and more specifically the SolarWinds supply chain attack, what was unique about this attack, what organizations could have done to defend themselves before the attack, the significance of this attack for public sector organizations in Canada, and some lessons learned from this attack.