SolarWinds breach: how to identify if you have been affected

Credit to Author: Ross McKerchar| Date: Mon, 14 Dec 2020 15:15:19 +0000

** We will update this article with additional information as it becomes available. Check back regularly for further updates. ** SolarWinds, an IT monitoring specialist, reported last Sunday that it had fallen victim to a “highly-sophisticated, manual supply chain attack &#8230; likely by a nation state.” The compromised products are SolarWinds Orion versions 2019.4 through [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/s-MEKpRJ9P0″ height=”1″ width=”1″ alt=””/>

Read more

“Double agent”: a MacOS bundleware installer that acts like a spy

Credit to Author: Sergei Shevchenko| Date: Tue, 17 Mar 2020 08:00:58 +0000

Security software frequently blocks “bundleware” installers &#8211; software distribution tools that bundle their advertised applications with (usually undesired) additional software &#8211; as potentially undesirable applications. But one widely-used software distribution tool for MacOS applications goes to great lengths to avoid being blocked as “bundleware” &#8211; using a number of anti-forensics techniques that are more common [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/n8Txqmat4RA” height=”1″ width=”1″ alt=””/>

Read more