FireEye Breach

Comments

3 comments

  • Avatar
    Firewalla

    you talking about solarwind? 

    0
    Comment actions Permalink
  • Avatar
    Gerard

    Yes. I understand the breach is more focused on Solarwinds dll files, but I guess as a peace of mind, are the domains released being added to the Active Block rule? If not, I mean, I’ve already added them as separate rules just as a safety precaution. 

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Yes, they are there.  I think Microsoft took over some of the CC domains already, so those domain's likely be 'safe' now https://www.zdnet.com/article/microsoft-and-industry-partners-seize-key-domain-used-in-solarwinds-hack/

     

    0
    Comment actions Permalink

Please sign in to leave a comment.