Everyone missed SUNBURST... or did they? - Matt Cauthorn - BSW #203

published 1 month ago by Security Weekly

When the SolarWinds Orion SUNBURST attack hit the national newscycle, businesses far-and-wide scrambled to determine whether or not they were affected–unfortunately, many found they couldn't say either way with confidence. And then came the question, "why didn't anyone catch this?" ExtraHop's Matt Cauthorn joins BSW to discuss the SUNBURST attack, why it was so challenging to detect, and share some behavioral analysis insights to shed light on what the attackers were doing post-compromise.   This segment is sponsored by ExtraHop Networks. Visit to learn more about them!   Visit for all the latest episodes! Show Notes:

more episodes from Paul's Security Weekly TV