I'm so happy and proud of my @SophosXOps colleagues for the challenging and insane amount of work that went into publishing our 6 part report today "Operation Pacific Rim" (https://www.sophos.com/en-us/content/pacific-rim). We hope that by sharing our experiences that others can take a page from our playbook on going toe to toe with nation-state adversaries and hopefully publish similar information for all of us to take a page from as well.
(1/3)
I wrote an accompanying blog with my takeaways for organizations looking to bolster their defences (https://news.sophos.com/en-us/2024/10/31/pacific-rim-whats-it-to-you/), while our CISO Ross McKercher wrote a piece on how to take defending products beyond "Detect and Respond" (https://news.sophos.com/en-us/2024/10/31/from-the-frontlines-our-cisos-view-of-pacific-rim/).
(2/3)
Most importantly our CEO, Joe Levy, wrote a piece with a call to action for the community to address the problem of Digital Detritus, all of the unpatched gear littering the internet that provides a haven and obfuscation to attackers by presenting a vast, easily hacked attack surface (https://news.sophos.com/en-us/2024/10/31/digital-detritus-the-engine-of-pacific-rim-and-a-call-to-the-industry-for-action/).
(3/3)
We invite the community to have a conversation with us about all of this as the way forward is never obvious, but clearly our attention to this problem must result in changing our behaviours toward defending our perimeter.
(4/3)
Chester Wisniewski π¨π¦
Wendy Nather
Andrew π» Brandt π