#FireEye

With the Fireeye breach news coming out, it's important to remember that no one is immune to this. Many security companies have been successfully compromised over the years, including Symantec,
Read more
breaking: cybersecurity firm FireEye has been hacked. In a blog post, CEO Kevin Mandia said a highly sophisticated foreign nation-state attack resulted in the theft of internal hacking tools (Red
Read more
I want to be absolutely up front about this. The whole SolarWinds thing has be seriously bothered. Here’s why (rant time)... 1/6 SolarWinds did not find the backdoor in Orion,
Read more
New: SolarWinds hackers did test-run of spy operation in Oct 2019, when malicious SolarWinds files were first downloaded by customers. That version didn't have backdoor in it, however. Indicates hackers
Read more
RE: ransomware, I see a lot of folks overly focusing on atomic indicators for ransomware. Ransomware is very easy to write and deploy and when a sophisticated cybercriminal is ready
Read more
#SolarWinds hack update thread.One word of caution, particularly for reporters publicizing hack victims. Many of the Orion platform customers have downloaded the backdoored update and it would have likely eventually
Read more
We are releasing reporting on Ghostwriter, IO activity focused on Poland, Lithuania, and Latvia, which leverages false narratives and fabricated content often planted on compromised media sites. The activity is
Read more
You may have seen positive tweets about FireEye’s response to their breach. I’ve also seen a lot of criticism. For those who might not be familiar with what goes on
Read more
This is great work by @MichalKoczwara! Maybe hidden to some, is the Beacon configuration. Specifically Spawnto_*. This list provides insight to what actors are using to inject into with CobaltStrike
Read more
The B2, "Spirit" Bomber.You can't see it on radar - but, it's presence becomes apparent after it's passing.Interesting code at the end ... no?Did you hear that Canadian Government? Identify
Read more
Expecting scope of this SolarWinds fallout to massively expand this week.At least it's not your SF-86's again. Maybe. Also expecting: same APT/perhaps same method for recent FireEye pwn. FireEye &
Read more
IR FOLKS - Look here - more in comments - If you are on a bridge right now... you need to jump on this GitHub... FireEye released signatures (Snort, YARA,
Read more
Here's a high-res image of SVR headquarters (former First Chief Directorate, KGB) that I purchased for my book, by Marina Lystseva Also, a subtle point on terminology: exfiltrating data from
Read more
EXCLUSIVE: U.S. Treasury breached by hackers backed by foreign government - sourceshttps://reut.rs/3oHqLJg  BREAKING: a highly sophisticated hacking group has stolen emails from Treasury Department and Commerce's NTIA. Other USG ag
Read more
Question did @TuckerCarlson or @seanhannity or @IngrahamAngle even mention or dedicate a news block to what is quite possibly on of the largest hacks in US History? This hack involves
Read more
New: Inside the deepening crisis consuming the federal govt as agencies scramble to figure out if they've been hacked."This is probably going to be one of the most consequential cyberattacks
Read more
By continuing to use the site, you are consenting to the use of cookies as explained in our Cookie Policy to improve your experience.