The truth about SBOM’s; A consumer perspective
image credit: Article Author
- Mar 19, 2021 5:00 pm GMTMar 19, 2021 5:04 pm GMT
- 713 views
Software Bill of Materials (SBOM) is becoming a hot topic of discussion following the Solarwinds attack that affected 18,000 entities in December 2020. People are asking, could an SBOM have prevented the installation of corrupted software distributed by Solarwinds. Sadly, the answer is no. However, this same attack is preventable today thanks to the availability of pattern matching algorithms that can detect the Solarwinds malware, called SUNBURST. Now that we know what the “SUNBURST virus” looks like, we can stop it from being installed, with the proper supply chain risk assessment controls in place. The ability to stop zero-day exploits, such as the original Solarwinds attack, remain a challenge to detect and prevent.