Relying on the kindness of strangers is not an ideal st […]
十一月 30, 2021
Fighting Supply Chain Threats Is Complicated
Go Go Gadget Alerts! FireEye Helix utilizes data from Amazon Inspector for Investigations
"Dr. Claw and M.A.D. Cat have started their cyber […]
十一月 29, 2021
Cloud API Services, Apps and Containers Will Be Targeted in 2022
McAfee Enterprise and FireEye recently teamed to releas […]
十一月 16, 2021
‘Tis The Season for Holiday Cyber Threats Targeting Enterprises in a Pandemic World
The holiday season is upon us, and many are preparing t […]
十一月 9, 2021
Who Will Bend the Knee in RaaS Game of Thrones in 2022
McAfee Enterprise and FireEye recently released its 202 […]
十一月 8, 2021
Nation States Will Weaponize Social and Recruit Bad Guys with Benefits in 2022
McAfee Enterprise and FireEye recently released its 202 […]
十一月 4, 2021
Limited Shifts in the Cyber Threat Landscape Driven by COVID-19
Though COVID-19 has had enormous effects on our society and economy, its effects on the cyber threat landscape remain limited. For the most part, the same [...]
十一月 4, 2021
XDR: Making an Impact on the SOC
With organizations struggling with alert fatigue and di […]
十月 27, 2021
A Global Reset: Cyber Security Predictions 2021
For most of us, 2020 was one of the most challenging ye […]
十月 27, 2021
Road to Predictions: A Discussion About 2021 With FireEye and Mandiant Experts
When planning Cyber Summit 2020, we thought it would be […]
十月 27, 2021
Late Game and Lingering Threats to the Upcoming Elections
As the U.S. elections near an end, the nature of succes […]
十月 27, 2021
The Cost Factor: Taking a Proactive Approach to Cyber Security ROI
Security teams are doing their best to keep employees o […]
十月 27, 2021
Europe’s New Sanction Regime Suggests a Growing Cyber Diplomacy Presence
For the first time in its history, the European Union ( […]
十月 27, 2021
McAfee Enterprise and FireEye 2022 Threat Predictions
What cyber security threats should enterprises look out […]
十月 27, 2021
Shaping the Future of Cybersecurity
Today marks a significant and exciting step forward for […]
十月 8, 2021
FireEye Network Security 9.1 Release is the Biggest Yet
In the pilot episode of the Apple TV+ show Ted Lasso, a […]
九月 24, 2021
On a Mission: A Rapidly Deployable Multi-Domain Solution
Government security teams often do not know what type o […]
九月 22, 2021
ELFant in the Room – capa v3
Since our initial public release of capa, incident responders and reverse engineers have used the tool to automatically identify capabilities in [...]
九月 15, 2021
Through the Analyst Lens: The Real Power of Managed Detection and Response Services
The constant threat of data breach has organizations sc […]
九月 14, 2021
Pro-PRC Influence Campaign Expands to Dozens of Social Media Platforms, Websites, and Forums in at Least Seven Languages, Attempted to Physically Mobilize Protesters in the U.S.
In June 2019, Mandiant Threat Intelligence first reported to customers a pro-People’s Republic of China (PRC) network of hundreds of inauthentic accounts [...]
九月 8, 2021
The Evolving Ransomware Landscape
In this episode of Eye on Security we dive into a secur […]
九月 7, 2021
PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers
In August 2021, Mandiant Managed Defense identified and responded to the exploitation of a chain of vulnerabilities known as ProxyShell. The ProxyShell [...]
九月 3, 2021
Too Log; Didn’t Read — Unknown Actor Using CLFS Log Files for Stealth
The Mandiant Advanced Practices team recently discovered a new malware family we have named PRIVATELOG and its installer, STASHLOG. In this post, we will [...]
九月 1, 2021
FireEye Email Security—Cloud Edition Now Offers Native Integration With Microsoft 365 (and More)
Email remains the number one attack vector today and, a […]
八月 26, 2021
Tackling Supply Chain Security
Whether it is shipping disruptions caused by the COVID- […]
八月 25, 2021
FireEye Recognized as a Leader in U.S. Managed Detection and Response Services
Every couple of years the security threat landscape is […]
八月 23, 2021
Detecting Embedded Content in OOXML Documents
On Advanced Practices, we are always looking for new ways to find malicious activity and track adversaries over time. Today we’re sharing a technique we [...]
八月 23, 2021
Mandiant Discloses Critical Vulnerability Affecting Millions of IoT Devices
Today, Mandiant disclosed a critical risk vulnerability in coordination with the Cybersecurity and Infrastructure Security Agency (“CISA”) that affects [...]
八月 17, 2021
Introducing FireEye Extended Detection and Response (XDR): A Flexible XDR Solution Born From the Front Lines of Threat Detection and Response
There is something inspiring about a large team coming […]
八月 16, 2021
Cloudvisory 5.0 Release Brings Cloud Native Infrastructure Scanning, IAM Tools and More
We are excited to share some great new time and sanity […]
八月 13, 2021
Announcing the Eighth Annual Flare-On Challenge
The FLARE team is once again hosting its annual Flare-On challenge, now in its eighth year. Take this opportunity to enjoy some extreme social distancing [...]
八月 12, 2021
An Intriguing Update to Mandiant Advantage
Today Mandiant made a significant announcement in furth […]
八月 10, 2021
UNC215: Spotlight on a Chinese Espionage Campaign in Israel
This blog post details the post-compromise tradecraft and operational tactics, techniques, and procedures (TTPs) of a Chinese espionage group we track as [...]
八月 10, 2021
Clear Directive: Executive Order Adds Urgency to Zero Trust Adoption
The Biden Administration’s recent cyber security Execut […]
八月 5, 2021
Mandiant Saves Multi-Brand Restaurant Company Millions of Dollars by Avoiding Ransomware
Every IT security professional knows what it’s like to […]
七月 26, 2021
capa 2.0: Better, Faster, Stronger
We are excited to announce version 2.0 of our open-source tool called capa. capa automatically identifies capabilities in programs using an extensible rule [...]
七月 22, 2021
Fostering CTI Development With Mandiant Intelligence Services
In this episode of Eye on Security, I am joined by Jeff […]
七月 15, 2021
Sharing is Caring: FireEye Helix Connects to Netskope to Block Threats
FireEye Helix is a SaaS security operations platform th […]
七月 14, 2021
Low Sophistication Threat Actors Continue to Target OT
In this episode of Eye on Security, I had Daniel Kapell […]
七月 9, 2021
Visualizing FireEye Endpoint Security Host Management Data With Google Data Studio
The Host Management module for FireEye Endpoint Securit […]
七月 9, 2021
Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise
Mandiant observed DARKSIDE affiliate UNC2465 accessing at least one victim through a Trojanized software installer downloaded from a legitimate website. [...]
七月 8, 2021
Top Cyber Threats to Latin America and the Caribbean
Cyber threat activity affects governments, businesses, […]
七月 8, 2021
Lighten the Load With XDR for Better Threat Detection
Alert fatigue is real. Think about this: How much time […]
七月 8, 2021
Re-Checking Your Pulse: Updates on Chinese APT Actors Compromising Pulse Secure VPN Devices
On April 20, 2021, Mandiant published detailed results of our investigations into compromised Pulse Secure devices by suspected Chinese espionage [...]
七月 8, 2021
Pandemic Impacts to the Cyber Threat Landscape
In the latest episode of Eye on Security, I had Jens Mo […]
七月 8, 2021
Can You Prove Your Next Cyber Investment Addresses the Most Risk?
A large majority (87%) of security leaders say their or […]
七月 8, 2021
Crimes of Opportunity: Increasing Frequency of Low Sophistication Operational Technology Compromises
Attacks on control processes supported by operational technology (OT) are often perceived as necessarily complex. This is because disrupting or modifying a [...]
七月 8, 2021