3rd Party Risk Management , Application Security , Cybercrime as-a-service
SolarWinds Attack: 'This Hit the Security Community Hard'RiskIQ CEO Lou Manousos Details Lessons to Learn in Supply-Chain Attack Aftermath
The SolarWinds breach is a case study in how attackers can subvert a widely used piece of software to turn it to their advantage, says Lou Manousos, CEO of RiskIQ.
See Also: Live Webinar | Breaking Down Security Challenges so Your Day Doesn’t Start at 3pm
“The magnitude of this attack is hard to overstate,” Manousos says. “Having a supply chain vendor like this - with a legitimate program that is trusted - used to carry out an attack, it’s just unprecedented.
”The number of organizations that have been hit, the types of organizations - some really advanced security programs - I think we’re all shocked to see how the traditional protection that has been put in place just wasn’t as effective as we would have liked when we have trusted software like this.”
In this video interview with Information Security Media Group, Manousos discusses:
- The impact of the SolarWinds breach;
- The response from the public and private sectors;
- Lessons to learn from this attack.
Manousos is CEO and co-founder of RiskIQ. As CEO, he has spearheaded a new approach that helps internet, financial services, healthcare, media and consumer packaged goods companies protect their brands from online fraud. Manousos is a recognized expert in internet security and fraud prevention who has been developing and delivering enterprise protection technologies for more than 15 years.