SunBurst: the next level of stealth
SolarWinds compromise exploited through sophistication and patience
ReversingLabs software validation solution minimizes software risk from 3rd party publishers, and reduces the time and expense associated with manual oversight. Audit teams can retain detailed software inventories to leverage in potentially compromised software detected at future points in time.
Challenge: Software providers are falling victim to cyber-attacks simply because they provide an exploitable attack vector which often goes unchecked, i.e. software publishers are are trusted and can easily deliver an attacker’s payload to unsuspecting customers. Unfortunately, recent fallout from these attacks which typically go unchecked or pass through existing security controls put your organization at risk. End-users must validate software packages are free of advanced malware before deploying into production.
Solution: Companies need to audit their software providers and demonstrate diligence in inspecting third-party software packages for known malware before deploying into their enterprise. Going beyond legacy AV, ReversingLabs Titanium Platform accurately detects advanced threats hidden in published software. In-depth analysis looks for unwanted and malicious functionality and behaviors while confirming software integrity. The analysis avoids limitations associated with file size and types while allowing you to confirm the software is free from tampering.
Challenge: Modern malware is being inserted directly into legitimate 3rd party applications and patches that cannot be detected by typical AV and vulnerability scanners. Hence, organizations have testing protocols to ensure the software and patches they deploy don’t have bugs and won’t disrupt the company. These software updates and patches are subjected to compliance and functionality testing, similar to initially deployed software, and need to be inspected for malware.
Solution: ReversingLabs Titanium Platform can be integrated into your remote management (RMM) and patching systems to automatically analyze software update packages and their corresponding files for hidden malware. Packages that are infected can be removed from the deployment cycle for further analysis, ensuring you don’t become a victim of your suppliers’ breaches.
Solution Insights
SolarWinds compromise exploited through sophistication and patience
How to Rebuild Trust in the SDLC and 3rd Party Software Supply Chain
With today’s software more reliant on third-party and open-source software, your software development lifecycle (SDLC) demands more checks to validate the integrity of your build, release and production software
ReversingLabs integrates to leading Python package repository PyPI to provide greater assurances that software packages distributed from its repository are free of malware.
ReversingLabs integrates to leading software code management system GitHub to provide assurance to organizations that their private repositories used during the software development and release processes are free of malware.
ReversingLabs integrates to leading JavaScript and node.js package manager npm to provide greater assurances that the distribution of JavaScript packages and modules are free of malware.