Computer Emergency Response Team (CERT): Create a report on how organizations respond to computer security incidents. The report will critique (benefits vs detriments) and give examples of how organizations responded to recent computer security incidents. Lastly, the report should also elaborate on the particular development of standards that help organizations deal with computer security incidents.
The pandemic has highlighted the importance of a well-functioning supply chain. CISA has published an alert notification of an advanced persistent threat actor responsible for abusing authentication methods. These methods compromised government agencies, critical infrastructure, and other private sector organizations through SolarWinds Orion, Microsoft 365, and the Azure environment. Explore the response from the government, and individual companies, and discuss how to reduce the likelihood of exploitation through authentication.
https://www.cisa.gov/supply-chain-compromise
https://www.cisa.gov/cyber-incident-response
https://www.cisa.gov/BadPractices
