by Michael Power
At Trend Micro we’re on the front line in the fight against threat actors. We see every day the ingenuity and determination of these adversaries. That’s why governments must lead from the front by raising the bar of baseline security standards, especially for providers of critical services.
So we’re delighted to see new proposals for updating the UK’s Network and Information Systems (NIS) Regulations 2018 to something fit for the modern digital age.
One of the most audacious cyber-attacks of recent years was revealed last December, when state-backed hackers infected customers of an IT software company via a malicious update. That SolarWinds attack resulted in the compromise of at least nine US government departments. At the time Trend Micro warned that this was just the tip of the iceberg. Unfortunately, we were right. Now, potentially thousands of customers of another IT management software company, Kaseya, have experienced a similar fate.
While US intelligence agencies investigate, Trend Micro and its partners’ customers remain protected via multiple layers of defence. Here’s what happened and how we’re keeping these organisations safe.