Advertisement
Organizations—especially large companies—often don’t learn about an intrusion or breach of their systems until an external party like a security researcher, law enforcement agency or business partner alerts them to it. The expanding range of attack methods, the growing use of open-source components, and the adoption of cloud services have significantly expanded the attack surface at many organizations and made it harder for security teams to discover breaches on their own. SolarWinds for example, did not know that intruders had broken into its systems and distributed malware via its software until security vendor FireEye informed the company about a breach.