Deconstructing the SolarWinds Attack: Timeline and Technique
About the Speaker
Minister of Magic at Splunk
Jesse Trucks has over 24 years of experience in ITops and SecOps. He has worked in non-profit group and organizational management since 2005, beginning with helping draft the LOPSA Code of Ethics and being a founding member of LOPSA. He later served as a LOPSA board member for several years. Trucks has founded and managed two LOPSA chapters - including our own LOPSA East Tennessee. He is a co-founder and President of ETSA, the non-profit formed by members of ETENN to support and grow our community, and he is the co-founder, President, and Principal of Knoxville School of Progressive Education, a non-profit, K-5 school. Trucks routinely consults with other non-profits on their bylaws and other organizational forming and management matters. He is the author and host of the Meanwhile in Security newsletter and podcast and the Minister of Magic at Splunk. He lives in Knoxville with his wife and son and their poodles and chickens building an oasis in the suburbs of West Knox, and he is an amateur radio operator with the callsign N9MOM.
In December 2020, the most extensive cyber attack in United States history was uncovered. Hidden in the monitoring software SolarWinds, the extent of the attack was unprecedented, creating back doors in networks in numerous companies and government agencies in the United States and other countries. In this talk, Jesse Trucks will walk through both the chain of events and lay out the technical logic comprising the attack.