Cybersecurity agency FireEye says it was hacked by a nation-state – TechCrunch

Cybersecurity firm FireEye says it was hacked by a nation-state – TechCrunch

FireEye, usually the primary firm that cyberattack victims will name, has now admitted it too has fallen sufferer to hackers, which the corporate known as a “refined risk actor” that was seemingly backed by a nation-state.

In a blog post confirming the breach, the corporate’s chief government Kevin Mandia mentioned the nation-backed hackers have “top-tier offensive capabilities,” however didn’t attribute blame or say which authorities was behind the assault.

Mandia, who based Mandiant, the incident response agency acquired by FireEye in 2014, mentioned the hackers used a “novel mixture of strategies not witnessed by us or our companions previously” to steal hacking instruments used usually by crimson groups, who’re tasked with launching licensed however offensive hacking campaigns towards prospects with a view to discover weaknesses or vulnerabilities earlier than malicious hackers do.

“These instruments mimic the habits of many cyber risk actors and allow FireEye to offer important diagnostic safety companies to our prospects,” mentioned Mandia. “Not one of the instruments comprise zero-day exploits. In line with our objective to guard the neighborhood, we’re proactively releasing strategies and means to detect using our stolen crimson workforce instruments.”

But when stolen, these instruments may make it simpler for hackers to launch assaults towards their victims.

Two years in the past, hackers breached and stole equally offensive hacking instruments from the Nationwide Safety Company, which the spy company used to gather intelligence on international suspected terrorists. However the exploit was later revealed and was used to infect thousands of computers with the WannaCry ransomware, inflicting hundreds of thousands of {dollars}’ value of harm.

Mandia mentioned that FireEye has developed a whole bunch of countermeasures to attenuate the affect that these instruments pose within the occasion that the hackers use the instruments, however that FireEye has seen no proof that the instruments have been abused.

Though the motives of the hackers are unknown, Mandia mentioned that the hackers appeared to hunt data associated to its authorities prospects.

But it surely’s not clear precisely when the breach occurred, or how FireEye was alerted to the incident. A spokesperson for FireEye declined to remark past the weblog put up when reached by TechCrunch.

FireEye, valued at about $3.5 billion, noticed its inventory tank by greater than 7% in after-hours buying and selling. The corporate has gained a repute as some of the well-resourced cybersecurity corporations available on the market, typically introduced in to know how a breach occurred and what might have been taken.

On this case, FireEye mentioned it had reported the incident to the FBI and alerted trade companions, like Microsoft, to the breach.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *