Archive for the ‘FireEye’ Category

APT28 Using EternalBlue to Attack Hotels in Europe, Middle East

August 12th, 2017
Researchers believe attacks against wi-fi systems in hotels across Europe and the Middle East track back to Russian-speaking hackers known as APT28.

Posted in APT28, EternalBlue, FireEye, French political party, Gamefish, Kaspersky Lab, malware, NBT-NS, NetBIOS Name Service, privacy, Python scripts, Sofacy, Web Security, wi-fi hacks | Comments (0)

Hacker Leaks Data From Mandiant (FireEye) Senior Security Analyst

July 31st, 2017
Reportedly, at least one senior cyber security analyst working with Mandiant, a Virginia-based cybersecurity firm owned by the FireEye, appears to have had its system compromised by hackers, exposing his sensitive information on the Internet. On Sunday, an anonymous group of hackers posted some sensitive details allegedly belonged to Adi Peretz, a ‎Senior Threat Intelligence Analyst at

Posted in data breach, FireEye, hacking news, LinkedIn, mandiant | Comments (0)

Office Zero Day Delivering FINSPY Spyware to Victims in Russia

April 12th, 2017
Researchers have learned that the recently patched Office zero day was used to target victims in Russia with FINSPY spyware.

Posted in Claudio Guarnieri, credential stealer, CVE-2017-0199, Cybercrime, exploits, Finfisher, FinSpy, FireEye, LATENTBOT, malware, Microsoft patches, Office zero day, privacy, security research, spyware, Word zero day | Comments (0)

Seven Years After Stuxnet, Industrial Firms Still Lag on Security

April 12th, 2017

In-brief: Seven years after the Stuxnet worm proved that attacks on industrial environments was possible, many industrial and manufacturing firms still lack basic elements of an effective information security strategy, a new report finds.  It has been seven years since the Stuxnet worm was discovered “in the wild’ by Sergey Ulasen...

Read the whole entry... »

Posted in apt, critical infrastructure, Energy, FireEye, Hacking, hacks, hardware, Manufacturing, Patching, published research, Reports, Siemens, software, Stuxnet, trends, vulnerabilities | Comments (0)

APT29 Used Domain Fronting, Tor to Execute Backdoor

March 27th, 2017
APT29, a/k/a Cozy Bear, has used Tor and a technique called domain fronting in order to secure backdoor access to targets for nearly two years running.

Posted in APT29, backdoor, backdoors, Cozy Bear, FireEye, malware, mandiant, Tor, Tor Hidden Service | Comments (0)

Report: Hacking Crews are all APT now

March 14th, 2017

  In-brief:The tactics of cyber criminal hacking crews are indistinguishable from those of sophisticated, state sponsored “advanced persistent threat” groups, the firm FireEye said in its most recent M-Trends report. The gap between the bad guys and firms who are their victims yawned even wider in 2016, according to a new report...

Read the whole entry... »

Posted in apt, attribution, backdoor, Botnet, china, correlation, crime, Cybercrime, data privacy, drive-by download, Fancy Bear, FireEye, forensics, google, Hacks & Hackers, incident response, indicators of compromise, insider, malware, organized crime, Patching, phishing, privilege escalation, Reports, russia, social engineering, software, threat intelligence, Threats, Top Stories, trends, vulnerabilities, Zero-Day | Comments (0)

Startup Security Weekly #21 – News

January 12th, 2017
DIY home security suites, a cybersecurity company’s biggest 2016 failure, and what should you expect as a tech startup in 2017? Full Show Notes Visit for all the latest episodes!

Posted in 21, Bitglass Raised, Blink, Company Growth, FireEye, news, Paul, security, startup, Startup Security Weekly, Unsplash | Comments (0)

Netflix Phishing Campaign Targeted User Information, Credit Card Data

January 10th, 2017
Researchers recently identified a phishing campaign set up to lure unsuspecting Netflix users into giving up their credentials and credit card data.

Posted in credentials, credit card data, FireEye, Netflix, phishing, phishing campaign, privacy, stolen credit card data, Web Security | Comments (0)

iCloud Phishing Campaign Zycode Back From the Dead

October 20th, 2016
A phishing campaign aimed at Apple users in China that relies heavily on typosquatting has resurfaced.

Posted in apple, china, FireEye, GreatFire, icloud, Mobile Security, OpenDNS, phishing campaign, Typosquatting, Web Security | Comments (0)

Hancitor Downloader Abusing APIs, PowerShell Commands

September 26th, 2016
Developers behind the malicious downloader Hancitor have bolstered the malware again, this time with new delivery approaches that make it more difficult to detect.

Posted in Data Stealer, detection, FireEye, Hancitor Downloader, malware, malware detection, Palo Alto Networks, Pony, Proofpoint, Vawtrak | Comments (0)