Media Roundtable

Securing the Software Supply Chain: How to Prevent the Next SolarWinds Attack



Form Header

Form description, sit amet, consectetur et nisl adipiscing elit.

[Form Here]

China and Russia are targeting vulnerabilities in the software supply chain to launch attacks against US companies and government agencies. The most infamous of these attacks in recent memory is the SolarWinds breach of 2020. Hackers gained access via a malicious software update in Orion, an IT monitoring platform by SolarWinds. At least 100 organizations were compromised.

Join Paul Roberts, Editor in Chief of The Security Ledger, and an esteemed panel of software security experts as they discuss how to prevent the next SolarWinds attack. They will address questions such as:

  • How do these hacks work?
  • How are they different from traditional attack vectors and why are they so successful?
  • How do we prevent attacks like this? How can businesses improve their security posture?
  • Who is responsible for securing software: the organization, developer, QA, or someone else?
  • What is going well in software security? What are we doing right?

Roundtable Details

Moderator: Paul Roberts, The Security Ledger

Panelists:

  • David Brumley, ForAllSecure
  • Chenxi Wang, Rain Capital
  • H.D. Moore, Rumble Inc.
  • Vincent Liu, Bishop Fox

Runtime: 57 minutes

Download Media Roundtable

Left Column

Lorem, ipsum dolor sit, amet consectetur adipisicing elit. Accusamus animi nisi sunt fugiat adipisci praesentium rerum explicabo, nostrum, vel porro rem unde, cum ut repudiandae iste, amet ad. Iure, iste!

Totam esse aut perspiciatis autem nam, debitis:

  • Obcaecati quae odio ut recusandae officia, in, vitae esse quidem blanditiis sit, nostrum neque nulla vero aliquid tenetur suscipit dolor ea voluptate.
  • Accusantium, officiis asperiores impedit nam! Reiciendis assumenda illo, vel tempore, iusto animi.
  • Quo asperiores ad quidem consectetur error perspiciatis ullam repellendus.
  • Est alias tempore, assumenda quaerat ullam, consequatur, quo aliquid quos officiis doloremque sed animi reiciendis rerum delectus voluptas dolorem aspernatur in. Odit!
  • ui quo praesentium voluptatum delectus sequi.

Form Header

Form description, sit amet, consectetur et nisl adipiscing elit.

[Form Here]

Left Column

Lorem, ipsum dolor sit, amet consectetur adipisicing elit. Accusamus animi nisi sunt fugiat adipisci praesentium rerum explicabo, nostrum, vel porro rem unde, cum ut repudiandae iste, amet ad. Iure, iste!

Totam esse aut perspiciatis autem nam, debitis:

  • Obcaecati quae odio ut recusandae officia, in, vitae esse quidem blanditiis sit, nostrum neque nulla vero aliquid tenetur suscipit dolor ea voluptate.
  • Accusantium, officiis asperiores impedit nam! Reiciendis assumenda illo, vel tempore, iusto animi.
  • Quo asperiores ad quidem consectetur error perspiciatis ullam repellendus.
  • Est alias tempore, assumenda quaerat ullam, consequatur, quo aliquid quos officiis doloremque sed animi reiciendis rerum delectus voluptas dolorem aspernatur in. Odit!
  • ui quo praesentium voluptatum delectus sequi.

Form Header

Form description, sit amet, consectetur et nisl adipiscing elit.

[Form Here]

Left Column

Quasi qui ducimus fugit eos odit tempora ex nulla tempore, placeat accusantium, explicabo ratione rem voluptatum itaque alias deserunt exercitationem neque dolores repudiandae corporis, quas nemo nostrum debitis. Repudiandae nobis cumque nesciunt iste, dolorum sapiente, impedit nihil voluptatibus, eligendi nisi qui libero commodi magnam.

Right Column

Top content area. Lorem ipsum dolor sit amet consectetur adipisicing elit. In molestiae esse, sit accusamus ab doloremque tempora maiores officia, odit atque.

Form Header

Form description, sit amet, consectetur et nisl adipiscing elit.

[Form Here]

Bottom content area. Lorem ipsum dolor sit amet, consectetur adipisicing elit. Nostrum inventore magni facilis suscipit odit unde rerum temporibus nesciunt illo tenetur.

Quad Section


Quad 1 Title

Lorem ipsum, dolor sit amet consectetur adipisicing elit. Temporibus, et, excepturi atque nisi commodi iusto ipsum illum fugit hic necessitatibus similique eum doloremque repellendus nostrum fuga, quod? Neque, amet, ea.

Quad 2 Title

Lorem ipsum dolor sit amet consectetur adipisicing elit. Quaerat dignissimos libero quibusdam adipisci deleniti quae quidem temporibus aliquid sunt. Earum repellat officia, nesciunt dolorem ipsum temporibus aspernatur illo non iusto!

Quad 3 Title

Lorem ipsum dolor sit amet, consectetur adipisicing elit. Quos, ab, aspernatur nemo neque omnis architecto modi id dolores alias quaerat quod similique consequuntur, dolore aperiam autem delectus! Dignissimos, fuga, ratione?

Quad 4 Title

Lorem, ipsum dolor sit amet consectetur adipisicing elit. Aspernatur aut enim, odio vitae incidunt deleniti sit voluptatibus, reiciendis molestiae! Dolorem ratione tenetur, aliquid temporibus sunt laborum optio possimus harum ea.

"Mayhem allows our engineers to easily get started with fuzz testing and find software flaws without knowing much about fuzzing. The learning curve of new tools can be steep, and Mayhem made it as frictionless as possible for our engineers to start finding bugs and gain more assurance in our software."

Evan Johnson, Head of Product Security at Cloudflare

“Mayhem’s fuzzing tech is unlike any platform I’ve worked with before -- in the best ways possible. Through their native symbolic execution engine in conjunction with their fuzzers, we can feed native binaries that run at our edge and perform behavior analysis at scale."

David Haynes, Security Engineer at Cloudflare

"Integrating Mayhem into our development process was a breeze, only taking a few minutes to configure and deploy. With great documentation and advanced features not normally found in other platforms, such as network target fuzzing, Mayhem allowed us to easily expand automate testing that would have taken significantly more effort with other solutions"

Alessandro Ghedini, Systems Engineer

Named to

Winner of

Showcased at

Speakers Section


David Brumley
CEO and Co-founder
David co-founded ForAllSecure to automatically check and protect the world's software. ForAllSecure's products are based upon over 10 years of his research in program analysis.
Alex Rebert
Co-founder and Head of Innovation
Alex is a computer security researcher, specializing in automated program analysis and bug finding.
Thanassis Avgerinos
Co-founder and VP of Engineering
Thanassis is an expert in program analysis, testing, and software security with over a decade of operational and academic experience.
Jeff Whalen
VP of Product
Jeff brings more than a dozen years of product experience to ForAllSecure, where he serves as the Vice President of Product Management.
Jonathan Doe
Title Here
Lorem ipsum dolor sit amet, consectetur adipisicing elit. Assumenda recusandae tenetur quae amet itaque omnis? Modi, rem voluptates, corrupti quisquam quia eum laborum exercitationem fuga tempora dicta quaerat animi asperiores!
Jonathan Doe
Title Here
Lorem ipsum, dolor sit, amet consectetur adipisicing elit. Doloribus aliquam quisquam soluta molestias architecto temporibus, omnis cupiditate perferendis aut est saepe iste harum odit, atque quod nam cumque dolore error.