Supply Chain Hacking Breaks Cyber Trust

Bringing together leaders, lawmakers and lawbreakers. Host Luke Fox explores how innovations in business and technology are redefining our trust in security measures.

 

The principle of trust isn’t unique to human relationships. It’s also a significant part of technology infrastructures. This cyber trust is what lets software updates and patches from the development company to their customers. Unfortunately, hackers can infiltrate these exchanges, appearing trustworthy but are a wolf in sheep’s clothing.

Such is the case with supply chain hacking and the cybersecurity story of the year—Solar Winds. Lending his expertise on the topic and explaining hacking’s evolving world is industry expert, Cylance founder, and best-selling author Stuart McClure.

“Supply chain hacking is one of the most overlooked aspects of cybersecurity. An antivirus signature-based approach isn’t going to stop this,” McClure said. He explained that a signature-based approach is deeply flawed. “It only detects viruses it’s seen before, that match known signatures,” he said.

Realizing this system was broken, McClure revolutionized virus detection by using AI and machine learning when founding Cylance. “We applied machine learning and data science, learning from past viruses, and predicting in real-time whether something was virus-like,” McClure said.

McClure went on to explain the SolarWinds hack based on what is publicly known. It goes back to misplaced trust.

“The number one target of supply chain hacking is to hack the build server that houses all the code and before it’s compiled and signed with the digital certificate. Malicious code now looks legitimate,” McClure said. That appears to be what hackers did with SolarWinds. The hackers got into the code, it was released to users, and the customer networks trusted it and let it in.

SolarWinds illustrates the weaknesses of supply chain security, breaking trust in the technology and business partners. McClure warned, “This case is not unique, and it’s not the first time this level of attack occurred. What is unique is that they hit a core element, hacking just one system to infiltrate many eventually.”

Catch Up On Previous Episodes of The Trust Revolution!

Follow us on social media for the latest updates in B2B!

Image

Latest

Brand experience with APL
Stepping into the Future at Shoptalk 2024: Creating a Flagship Brand Experience with APL
March 28, 2024

The customers of today are no longer satisfied with mere products; they crave brands that provide immersive, distinctive, and tailored brand experiences. Athletic Propulsion Labs (APL) epitomizes this shift, setting a new standard in the luxury performance market with its innovative athletic footwear. APL’s newly opened flagship boutique in Soho, with its artisan plaster walls […]

Read More
Balancing professional growth and personal well-being
Routines, Rituals and a Mission-Driven Approach: MarketScale’s CRO Tim Maitland on Balancing Professional Growth and Personal Well-Being
March 28, 2024

In a world that often demands the relentless pursuit of success, finding the sweet spot between professional growth and personal well-being can seem like an elusive goal. As we navigate the complexities of modern work-life dynamics, the conversation around maintaining this balance has become more pertinent than ever. In this episode of Growthwell, we […]

Read More
marketing careers
The Impact of AI on Marketing Careers
March 28, 2024

In this episode of The Marketing AI SparkCast, host Aby Varma, a B2B Marketing Leader and the Founder of Spark Novus, sits down with Matt Gill, the Founder and Managing Partner of MICA Consulting Group. Spark Novus is a consultancy specializing in strategic AI adoption in marketing. MICA is a leading boutique national marketing […]

Read More
healthcare cybersecurity
Continued Threats Require a Major Shift in Healthcare Cybersecurity Risk Perception
March 28, 2024

Recent cyberattacks on healthcare institutions have thrust cybersecurity from a back-office concern to the forefront of the healthcare industry’s agenda. A significant breach at Change Healthcare disrupted essential services, underlining the vulnerability of healthcare networks to such threats and the dire consequences for patient care. Government and industry responses have stressed the importance of […]

Read More