Microsoft released a lengthy white paper on the SolarWinds hack affecting thousands of computers. This is scary stuff, and the details continue to come out slowly and you wonder how it all will play out. Many IT pros rely on SolarWinds for monitoring and in this episode, we discuss the exploit, how mere mortals like us might feel a bit overwhelmed at the prospect, and what our due diligence is in a scenario like this.
Somebody was able to get access to check-in code…this was a fairly sophisticated set of defense mechanisms. Security professionals and SolarWinds employees don’t see anything out of the ordinary; it’s only outsiders who do, and only in production.
Meet the Hosts
With more than 10 years of working with SQL Server, Carlos helps businesses ensure their SQL Server environments meet their users’ expectations. He can provide insights on performance, migrations, and disaster recovery. He is also active in the SQL Server community and regularly speaks at user group meetings and conferences. He helps support the free database monitoring tool found at databasehealth.com and provides training through SQL Trail events.
Eugene works as an independent BI consultant and Pluralsight author, specializing in Power BI and the Azure Data Platform. He has been working with data for over 8 years and speaks regularly at user groups and conferences. He also helps run the GroupBy online conference.
Kevin is a Microsoft Data Platform MVP and proprietor of Catallaxy Services, LLC, where he specializes in T-SQL development, machine learning, and pulling rabbits out of hats on demand. He is the lead contributor to Curated SQL, president of the Triangle Area SQL Server Users Group, and author of the books PolyBase Revealed (Apress, 2020) and Finding Ghosts in Your Data: Anomaly Detection Techniques with Examples in Python (Apress, 2022). A resident of Durham, North Carolina, he can be found cycling the trails along the triangle whenever the weather's nice enough.