Sunburst 网络安全事件后的补救措施
技术
- 基础设施即服务 (IaaS) - 云计算
- 平台即服务 (PaaS) - 应用开发平台
适用行业
- 设备与机械
用例
- 网络安全
- 交通监控
服务
- 网络安全服务
客户
总部位于加利福尼亚的大型全球科技公司。
关于客户
IT 团队在全球多个战略数据中心运行 VIAVI Observer 平台。 IT 网络服务团队也在使用 SolarWinds Orion 软件。
挑战
关键目标是了解是否有任何机密或敏感数据被访问或泄露。鉴于相关组织提供的解决方案的性质,这一点尤其令人担忧,因为声誉损害将对当前和未来的业务关系产生长期影响。
解决方案
立即的反应是隔离演示实例,同时根据 SolarWinds、CISA 和其他网络安全机构的指导继续调查。使用他们的集中式防火墙日志记录 SIEM 和网络流数据分析工具根据建议执行调查。
VIAVI Observer Platform 被用作额外的监控层和重要的取证工具,用于验证进出 SolarWinds 服务器的历史流量。
Observer 解决方案提供了详细信息:
- 可以追溯到已知的攻击者在 SolarWinds、网络流量和用于取证的数据包级数据中妥协的时间。
- 从组织边界内对已发布资源中的 500 多个命令和控制主机中的任何一个进行任何尝试。
- Observer GigaFlow 可以从它监控的任何地方向黑名单 IP 显示任何尝试的活动,而不仅仅是 Observer 服务器。
- 对进出易受攻击的 SolarWinds Orion 服务器的所有流量的可见性。
运营影响
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
Smart Water Filtration Systems
Before working with Ayla Networks, Ozner was already using cloud connectivity to identify and solve water-filtration system malfunctions as well as to monitor filter cartridges for replacements.But, in June 2015, Ozner executives talked with Ayla about how the company might further improve its water systems with IoT technology. They liked what they heard from Ayla, but the executives needed to be sure that Ayla’s Agile IoT Platform provided the security and reliability Ozner required.
Case Study
IoT enabled Fleet Management with MindSphere
In view of growing competition, Gämmerler had a strong need to remain competitive via process optimization, reliability and gentle handling of printed products, even at highest press speeds. In addition, a digitalization initiative also included developing a key differentiation via data-driven services offers.
Case Study
Predictive Maintenance for Industrial Chillers
For global leaders in the industrial chiller manufacturing, reliability of the entire production process is of the utmost importance. Chillers are refrigeration systems that produce ice water to provide cooling for a process or industrial application. One of those leaders sought a way to respond to asset performance issues, even before they occur. The intelligence to guarantee maximum reliability of cooling devices is embedded (pre-alarming). A pre-alarming phase means that the cooling device still works, but symptoms may appear, telling manufacturers that a failure is likely to occur in the near future. Chillers who are not internet connected at that moment, provide little insight in this pre-alarming phase.
Case Study
Premium Appliance Producer Innovates with Internet of Everything
Sub-Zero faced the largest product launch in the company’s history:It wanted to launch 60 new products as scheduled while simultaneously opening a new “greenfield” production facility, yet still adhering to stringent quality requirements and manage issues from new supply-chain partners. A the same time, it wanted to increase staff productivity time and collaboration while reducing travel and costs.
Case Study
Integration of PLC with IoT for Bosch Rexroth
The application arises from the need to monitor and anticipate the problems of one or more machines managed by a PLC. These problems, often resulting from the accumulation over time of small discrepancies, require, when they occur, ex post technical operations maintenance.
Case Study
Robot Saves Money and Time for US Custom Molding Company
Injection Technology (Itech) is a custom molder for a variety of clients that require precision plastic parts for such products as electric meter covers, dental appliance cases and spools. With 95 employees operating 23 molding machines in a 30,000 square foot plant, Itech wanted to reduce man hours and increase efficiency.
