Blogs by Joseph E. Krull

December 24, 2020

Hundreds of articles have already been written about the recent sophisticated campaign to penetrate government agencies and enterprises using a doctored software update to SolarWinds Orion, SolarWinds’ network management product. Up to 18,000 SolarWinds customers may have been affected. It’s likely that the cybersecurity community will learn more in the coming weeks, but what we know now points to a classic supply chain security problem.

August 18, 2020

We’re less than three months from the U.S. presidential election, and the Democratic and Republican conventions will take place over the next week. The COVID-19 pandemic forced significant changes in these conventions, and a raging debate continues regarding voting by mail. Let’s leave the vote by mail issue aside for now and focus on election cybersecurity.

April 6, 2020

I use Zoom video conferencing and will continue to use it despite the negative press reporting.

January 23, 2020

In 2019, attackers continued to target third parties, service providers, and supply chain partners with the intention of broadening the scale and impact of their attacks. Notable instances in 2019 included the following:

Pages