Solarwinds Breach

D

DRLT

New Member
Joined
Dec 19, 2019
Messages
4
Reaction score
1
Is anybody considering moving from Solarwinds due to the breach?

If so, are you looking at On Premises or SaaS solution?
 
My company is checking every single instance of SolarWinds (any product) we have in our environment, from Orion to IP Manager to SFTP. I suspect all of it will be replaced with other products. Fortunately our outbound firewall rules are very tight, so I doubt any of it has made any outbound connections.
 
Claymore said:
My company is checking every single instance of SolarWinds (any product) we have in our environment, from Orion to IP Manager to SFTP. I suspect all of it will be replaced with other products. Fortunately our outbound firewall rules are very tight, so I doubt any of it has made any outbound connections.
Click to expand...
The problem with the Solarwinds breach is that it was a Solarwinds update that was infected, and we mostly presume that the Vendors always take precautions when releasing updates. Very slack of Solarwinds in that regard.

If you are looking for an alternative to Solarwinds check out Infosim, Stablenet. www.infosim.net

They have flexible deployment option depending on the size of your Network.
 
The only Solarwinds product my company uses is Pingdom, which doesn't require any software to be installed on any servers, so we'll be sticking with them for the foreseeable future.
 
DRLT said:
The problem with the Solarwinds breach is that it was a Solarwinds update that was infected, and we mostly presume that the Vendors always take precautions when releasing updates. Very slack of Solarwinds in that regard.

If you are looking for an alternative to Solarwinds check out Infosim, Stablenet. www.infosim.net

They have flexible deployment option depending on the size of your Network.
Click to expand...
I suspect that most companies doing similar software are just as slack. We just don't know about them...yet. What Solarwinds product is Stablenet an alternative to?
 
It's a big issue in that we all trust updates, especially automatic updates.

Imagine if they managed to exploit the Microsoft update process. Suddenly almost every PC in the word pwned.

When last did anyone actually check the MD5/SHA of the update they downloaded and installed.
 
gregmcc said:
It's a big issue in that we all trust updates, especially automatic updates.

Imagine if they managed to exploit the Microsoft update process. Suddenly almost every PC in the word pwned.

When last did anyone actually check the MD5/SHA of the update they downloaded and installed.
Click to expand...
Windows Update does that all automatically for you - will return a hash mismatch if there's an issue.
It also checks the signing certificate and a performs a number of other checks.
 
Claymore said:
I suspect that most companies doing similar software are just as slack. We just don't know about them...yet. What Solarwinds product is Stablenet an alternative to?
Click to expand...
Stablenet is an Automated Network & Service Management Solution, a 4-in-1 solution with Network Discovery / Inventory, Fault (Root Cause Analysis), Performance and Network Change & Configuration Management (including back-up) on a single platform designed to manage network infrastructure and is vendor / technology agnostic.

They do have a partner locally.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X