What conferences are on your must-attend list? “RSA is the single “must attend” conference that I can suggest to anyone in the industry. There is such a wealth of thought leadership across all domains in cyber and I have yet to find a better singular forum to access it.”
The Network: The Washington Post's regular survey of cybersecurity experts washingtonpost.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from washingtonpost.com Daily Mail and Mail on Sunday newspapers.
Chip Somodevilla/Getty Images
toggle caption Chip Somodevilla/Getty Images
Gen. Paul Nakasone, the National Security Agency director, told NPR ahead of the 2020 elections that the U.S. was "going to expand our insights of our adversaries. ... We're going to know our adversaries better than they know themselves." Chip Somodevilla/Getty Images
Back in November, Kevin Mandia, CEO of the cybersecurity firm FireEye, opened his mailbox to find an anonymous postcard. It had a simple cartoon on the front. "Hey look, Russians," it read. "Putin did it."
He might not have given it a second thought were it not for one thing: His company had recently launched an internal security investigation after officials discovered someone had tried to register an unauthorized device into its network. That inquiry eventually led to the discovery of something even more worrisome: the breach of a Texas-based network monitoring company called SolarWinds.
Why Russia May Have Stepped Up Its Hacking Game
By Dina Temple-Raston
January 29, 2021
Back in November, Kevin Mandia, CEO of the cybersecurity firm FireEye, opened his mailbox to find an anonymous postcard. It had a simple cartoon on the front. “Hey look, Russians,” it read. “Putin did it.”
He might not have given it a second thought were it not for one thing: His company had recently launched an internal security investigation after officials discovered someone had tried to register an unauthorized device into its network. That inquiry eventually led to the discovery of something even more worrisome: the breach of a Texas-based network monitoring company called SolarWinds.
Listen • 3:59
Gen. Paul Nakasone, the National Security Agency director, told NPR ahead of the 2020 elections that the U.S. was "going to expand our insights of our adversaries. ... We're going to know our adversaries better than they know themselves."
Back in November, Kevin Mandia, CEO of the cybersecurity firm FireEye, opened his mailbox to find an anonymous postcard. It had a simple cartoon on the front. "Hey look, Russians," it read. "Putin did it."
He might not have given it a second thought were it not for one thing: His company had recently launched an internal security investigation after officials discovered someone had tried to register an unauthorized device into its network. That inquiry eventually led to the discovery of something even more worrisome: the breach of a Texas-based network monitoring company called SolarWinds.
/
Gen. Paul Nakasone, the National Security Agency director, told NPR ahead of the 2020 elections that the U.S. was "going to expand our insights of our adversaries. ... We're going to know our adversaries better than they know themselves." // Getty Images, Chip Somodevilla
Back in November, Kevin Mandia, CEO of the cybersecurity firm FireEye, opened his mailbox to find an anonymous postcard. It had a simple cartoon on the front. "Hey look, Russians," it read. "Putin did it."
He might not have given it a second thought were it not for one thing: His company had recently launched an internal security investigation after officials discovered someone had tried to register an unauthorized device into its network. That inquiry eventually led to the discovery of something even more worrisome: the breach of a Texas-based network monitoring company called SolarWinds.
By Justin Katz
Dec 23, 2020
The Cybersecurity and Infrastructure Security Agency today announced it has evidence suggesting hackers may have been able to breach federal networks through other means than just the SolarWinds Orion software suite.
"CISA has evidence of additional initial access vectors, other than the SolarWinds Orion platform; however, these are still being investigated. CISA will update this alert as new information becomes available," according to the alert.
The agency also characterized the hack as a "grave risk" to federal, state and local governments as well private sector companies. CISA on Sunday night issued a rare emergency directive for all federal agencies to stop using SolarWinds Orion, but what has become clear this week is that hackers will likely reside inside the government's networks even if SolarWinds Orion is not being used any longer.