Prime Suspect: Malicious Injections into Software Supply Chains

  • Tuesday, 02 Aug 2022 1:00PM EDT (02 Aug 2022 17:00 UTC)
  • Speakers: Jake Williams, Roger Thompson, Technical Product Manager, Reversing Labs

Whether you are a SOC architect or analyst tasked with closing the gap in software supply chain security you won’t want to miss this valuable training to learn how to protect your organization from the top threats of today. In this session we’ll learn how SOC teams and Software Development teams are operationalizing the scanning of their software packages and binaries before they are installed and put an organization at risk.

We will discuss and review:

  • Overview of recent attacks - and threat trends in the software supply chain examples -
  • A ReversingLabs expert will analyze the Sunburst attack and SolarWinds binary and show you where malware is present deep within dependencies of dependencies
  • Learn how to determine if your existing tools (EDR, AV) don’t scan deep enough to detect hidden malware and software integrity
  • How to choose the right controls to implement
  • See how Software Development Teams and SOCs are adapting their file pipeline for software package scanning
  • We’ll provide a summary of the problem and give you a framework to share details on how to solve this gap internally in your organization