Response to Solorigate

We want to help all users hit by Solorigate who can't or don't want to use their current monitoring software, vital for their business. We also want to address questions how we deal with similar threats.

If you haven't' been living under a rock, you've probably heard about SOLORIGATE. If you haven't, read more on the Microsoft blog and other places all over the Internet. Read more on tenable

What do we do to avoid similar incidents?

  • We keep things tight, under a single roof - unlike other companies with development projects spread over 30 offices worldwide. It's easier to maintain security and software integrity this way.

  • Our centralized software development allows minimal access to the build server. We also have strict procedures to verify and review each change (commit) in the code, even though we make hundreds of them each week.

  • Most libraries we use are in the source code, and any external libraries are coming from trusted sources like Google, Microsoft, or Facebook.

  • Our code doesn't download updates itself and works well in isolated networks.

  • We do not use the .net framework nor Java, and it's much harder to download source code and compile it on site. If we use scripting (Javascript), the code is pre-compiled or loaded from encrypted libraries straight from the disk.

  • We also try to reduce unnecessary dependencies on open source which can be vulnerable to supply chain type of attack.

  • Before release, we scan all executables with Microsoft Defender on a build machine

It's fair to mention that the Solorigate attack was very well planned, malware was hiding very well and was hard to detect once it got to the signed code. Thus we think it's especially important to avoid slipping the malware into the source code. Betting on the most popular things is not always the best choice.

We want to help

Living without any monitoring software keeps users in the dark. Based on our customers' experience, we can assure you that NetCrunch is the fastest and painless solution to implement, even temporarily.

We know (by experience, not an empty claim) that a single NetCrunch server can easily monitor 5000+ nodes, 50 thousand network interfaces, and about 500 thousand of metrics. And all this running on a single VM.

Hundreds of pre-configured monitoring policies let you start monitoring instantly, and we believe you will be surprised by how capable the NetCrunch system is.

Our offer

Terms

What to do
  1. Install NetCrunch trial software from the download page
  2. Register trial directly in the software
  3. You will have initial 30 days to run the software
  4. Send us an email (to sales@adremsoft.com) with your NetCrunch serial number and SOLORIGATE keyword (you can find your SN in the program's 'about' box)
  5. We will prolong your license for another 60 days

You can use it for free. By default it allows monitoring of 10,000 nodes or interfaces. Let us know if you need more nodes - we can further increase your license.

Stay informed about your network and get ample time to review available options on the monitoring market.

NetCrunch Monitoring Coverage

NetCrunch Network Monitoring

Network Maps, Dashboards, and Alerts.
Monitor anything. Network, cloud, config.