What If We Caught SUNBURST in CI/CD? Rewriting the SolarWinds Playbook with AI-Augmented DevSecOps
No ratings
Presented at SecTor 2025 by
SUNBURST attack was a wake-up call to blue teams everywhere. It showed that nation-state attackers can exploit DevOps pipelines as stealthy backdoors. This talk explores what would have happened if we had embedded threat hunting in the build process itself.Let's reimagine how a tightly integrated DevSecOps pipeline - powered by eBPF, behaviour modeling, and AI-assisted detection - might have surfaced anomalies before malware ever shipped.