Solarwinds Orion Hack December 2020
Amazon Affiliate Store
➡️ https://www.amazon.com/shop/lawrencesystemspcpickup
Gear we used on Kit (affiliate Links)
➡️ https://kit.co/lawrencesystems
Try ITProTV free of charge and get 30% off!
➡️ https://go.itpro.tv/lts
Use OfferCode LTSERVICES to get 10% off your order at
➡️ https://www.techsupplydirect.com/
Tesla Referral Program Offer
🚘 https://www.tesla.com/referral/thomas65092
Lawrence Systems Shirts and Swag
👕 https://teespring.com/stores/lawrence-technology-services
Digital Ocean Offer Code
➡️ https://m.do.co/c/85de8d181725
HostiFi UniFi Cloud Hosting Service
➡️ https://hostifi.net/?via=lawrencesystems
Protect you privacy with a VPN from Private Internet Access
➡️ https://www.privateinternetaccess.com/pages/buy-vpn/LRNSYS
Google Fi Service Referral Code
📱https://g.co/fi/r/TA02XR
More Of Our Affiliates that help us out and can get you discounts!
➡️ https://www.lawrencesystems.com/partners-and-affiliates/
Twitter
🐦 https://twitter.com/TomLawrenceTech
Patreon
🔗 https://www.patreon.com/lawrencesystems
Our Forums
🔗 https://forums.lawrencesystems.com/
GitHub
🔗 https://github.com/flipsidecreations/
Discord
🔗 https://discord.gg/ZwTz3Mh
Our Web Site
🔗 https://www.lawrencesystems.com/
https://www.virustotal.com/graph/embed/g8c1baece7cab4e1aae553271df8772f8ca1dcaa7b1d84c508982f294f3ea45c8
https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html
Only 1 / 67 antivirus engines list SUNBURST backdoor as malicious – SolarWinds.Orion.Core.BusinessLayer.dll https://t.co/taaiUtSJzR #SUNBURST #UNC2452 pic.twitter.com/urV0matlfl
— Kyle Hanslovan (@KyleHanslovan) December 14, 2020
https://www.virustotal.com/gui/file/32519b85c0b422e4656de6e6c41878e95fd95026267daab4215ee59c107d6c77/community
https://cyber.dhs.gov/ed/21-01/
⏱️ Timestamps ⏱️
0:00 Solwarwind Orion Attack
0:25 What was attacked
0:50 Solarwinds MSP
1:30 When Did it start
2:10 Fireeye Report
2:52 Sunburst Backdoor
3:30 Supply Chain Attack
6:05 Siging Certificate Compromise
7:21 Malware Analysis and C2 Server Domains
13:41 What were they after
by Lawrence Systems
simple network management protocol
