The Cybersecurity and Infrastructure Security Agency has evidence that trojanized SolarWinds software isn’t the only way these particular hackers have been getting access to the federal government’s networks. Other methods include “password guessing, password spraying, and inappropriately secured administrative credentials,” according to a new CISA alert. Threat actors abusing Security Assertion Markup Language tokens – […]
