Brumpost
  • COVID-19
  • Best Products
  • News
  • How Tos
  • The Bargainer
  • Reviews
  • Tireposts
  • @Work
  • 5G
No Result
View All Result
Brumpost
Home News Industry News

FireEye Compromised and its Hacking Tools stolen by “State-Sponsored” Hackers

Other big cybersecurity firms including Bit9, Kaspersky Lab and RSA, NSA and CIA have all been compromised in the past

Sam Curtis by Sam Curtis
4 months ago
in Industry News
Reading Time: 4 mins read
A A
0
This Wednesday, Feb. 11, 2015 photo shows FireEye offices in Milpitas, Calif. The cybersecurity firm said Tuesday, Dec. 8, 2020 it was hacked by what it believes was a national government. The attacker targeted and stole assessment tools that FireEye uses to test its customers' security and which mimic the methods used by hackers, the company said. (AP Photo/Ben Margot)

This Wednesday, Feb. 11, 2015 photo shows FireEye offices in Milpitas, Calif. The cybersecurity firm said Tuesday, Dec. 8, 2020 it was hacked by what it believes was a national government. The attacker targeted and stole assessment tools that FireEye uses to test its customers' security and which mimic the methods used by hackers, the company said. (AP Photo/Ben Margot)

Share on FacebookShare on TwitterPin It

FireEye which happens to be one of the largest cybersecurity companies in the United States said on Tuesday that it’s system has been compromised and its hacking tools used to test the defenses of its clients had been stolen but hinted the attacker could be a government.

HostGator Web Hosting
ADVERTISEMENT

The company has an array of contracts throughout the country’s cyber security sector as well as the US allies. With the recent attack, FireEye saw its share dropped 8% in after-hours trading.

The big security breach was disclosed in a public filling with the Securities and Exchange Commission citing the company’s CEO Kevin Mandia.

According to a blog post from FireEye, the company said the red team tools were stolen as part of a highly sophisticated, likely government-backed hacking operation which uses unseen techniques.

The initial time of hacking wasn’t specified but according to an individual close to the event stated the company has been resetting user passwords over the past two weeks.

Beyond the tool theft, the hackers also appeared to be interested in a subset of FireEye customers: government agencies.

According to the chairman of the House of Intelligence Committee, Rep. Adam Schiff, he said he would request for more information.

“We have asked the relevant intelligence agencies to brief the Committee in the coming days about this attack, any vulnerabilities that may arise from it, and actions to mitigate the impacts.” Schiff said.

But there is no evidence that the FireEye’s hacking tools stolen have been used or any of its client’s data being stolen but the Federal Bureau of Investigation (FBI) and Microsoft are helping to investigate.

“The FBI is investigating the incident and preliminary indications show an actor with a high level of sophistication consistent with a nation state,” said Matt Gorham, assistant FBI director for the Cyber Division.

According to a former Defense Department official who is familiar with the case stated that Russia was on his list of suspects.

Russian government meddling with the US election had always been a top concern for security agencies in the country and so some Russian hacking techniques were exposed by US officials.

FireEye isn’t the first to be compromised as other big names like Bit9, Kaspersky Lab and even RSA have all be successfully hacked out in the past.

“Plenty of similar companies have also been popped like this,” said a Western security official who asked not to be named.

“The goal of these operations is typically to collect valuable intelligence that can help them defeat security countermeasures and enable hacking of organizations all over the world,” said Dmitri Alperovitch, co-founder and former chief technology officer at top rival CrowdStrike.

FireEye disclosing what happened and which tools were taken is “helping to minimize the chances of others getting compromised as a result of this breach.”

The company however stated it was working on to shore up defenses against its own tools by using different software makers as well as releasing countermeasures publicly.

Those showed that the tools uses modified versions of public programs, said Vincent Liu, chief executive of security firm Bishop Fox and a former National Security Agency analyst.

According to the company’s CEO Mandia stated that none of the red team tools exploited the so-called “zero-day vulnerabilities”

Past hacking attacks on government agencies and contractors have captured such higher-value hacking tools, and some of those tools have been published, wrecking their effectiveness as defenses are put in place.

In the past, both the NSA and CIA have been compromised with Russia being the key suspect. Meanwhile there have been Russian and Iranian tools that were published after being hacked while private surveillance software makers have also been targeted.

Some experts said it is hard to estimate the impact of a tool leak that focuses on known software vulnerabilities, but it could make attackers’ jobs easier.

“Exploitation tools in the wrong hands will lead to more victimization of people who don’t see it coming, and there’s already enough problems like that,” said Paul Ferguson, threat intelligence principal at security company Gigamon. “We don’t really need more exploitation tools floating around making it easier – look at ransomware.”

Whenever private companies learn of a vulnerability in their software products, they often offer a “patch” or upgrade that nullifies the issue. But many users do not install these patches at once, and some do not for months or longer and that can get their software to be vulnerable to attacks.

Source: Reuters
Tags: Security
ADVERTISEMENT

Related Posts

Industry News

LastPass’ seven in-built trackers for Android could pose security threat

by Eva Derika

German security firm, Exodus has conducted an extensive investigation on the password manager application LastPass where it found that the service collects and sends personal information of subscribers using the...

Read more
Zuckbuck
Culture

Facebook needs to make more billions and wants you to allow it

by Ret SILO

The company uses it's user's data to retarget them with ads

Read more
Enterprise

There is an increase in the sales of Network Logins on the Dark Web by Hackers

by Brett Marcos

Hackers now prefer to sell to the highest bidders in the Ransomware gangs

Read more
Apps/Software

These are the best alternatives to LastPass

by Eva Derika

After making the big announcement earlier this week that it will be reducing its free-tier features in favor of subscription-based usage, LastPass might have annoyed a portion of its audiences...

Read more
US elections
Industry News

Report says election officials are vulnerable to phishing attacks

by Maria Janetta

With the next election coming up, a whooping percentage of election administrators could be exposed to phishing attacks through their system of choice

Read more
Twitter hack
Industry News

Report says more than 1000 Twitter employees had access that could aid hackers

by Brett Marcos

This revelation was made by two of the social media former employees which raised concerns as to why the company gave access to non-staffs

Read more
Leave Comment

TOP BARGAINS

The Bargainer

AllDoCube iPlay 40 UNNISOC T618 With 8GB of RAM and 128GB of Storage just got cheaper

The Bargainer

Enjoy a Massive discount for these BlitzWolf® over-ear Gaming Headphones

The Bargainer

This BlitzWolf® BW-FUN3 Wi-Fi Essential Oil Diffuser is offered with 40% off

The Bargainer

Save $70-$130 On Select Samsung Galaxy Tablets on Best Buy

The Bargainer

Save 45% on the Deerma DX700S 2-in-1 vacuum cleaner

BRUMPOST DAILY

Get caught up in minutes with our speedy summary of today’s tech happenings!
SUBSCRIBE

BEST HOLIDAY DEALS

BEST HOLIDAY DEALS

It’s holiday season and on Brumpost Bargainers, we actually get you the best values and amazing deals by scouring the entire web for the most affordable yet high quality products ever for you.

Learn more
  • About us
  • Advertise
  • Mobile
  • Write for us
  • FAQ
  • Cookie Policy
  • Contact us
  • Career
  • Terms of Use
Menu
  • About us
  • Advertise
  • Mobile
  • Write for us
  • FAQ
  • Cookie Policy
  • Contact us
  • Career
  • Terms of Use
© 2020 BRUMPOST MEDIA LLC
All Rights Reserved
FOLLOW US
AFFILIATE DISCLOSURE
Brumpost may get a commission from retail offers.
  • Login
  • Sign Up
No Result
View All Result
  • Tech News
    • Industry News
    • Gears & Gadgets
    • Sci-Tech
    • Culture
    • Enterprise
    • Rumors
  • Products Review
    • Smartphones
    • Smartwatches
    • Bluetooth Speakers
    • Headphones
    • PC & Computers
  • “How-to” Guide
    • Apps/Software
    • BP-Hack
    • Gadgets
    • Internet
  • Tirepost
    • Best Cars
    • Car Reviews
    • Latest News
  • @Work
  • The Bargainer
    • under $50
    • Under $100
    • Under $200
    • Under 300
    • under $400
    • Under $500
  • Videos
  • Pictures
  • COVID-19 Monitor

©Copyright 2018 Brumpost Media, Inc.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
DON’T MISS OUT AGAIN!
GET THE LATEST UPDATES IN YOUR INBOX EVERYDAY
FREE SIGN UP
By signing up, you agree to BRUMPOST Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Learn how to grow every aspect of your
GET THE BEST SMALL BUSINESS RESOURCES & TIPS DAILY
FREE SIGN UP
By signing up, you agree to BRUMPOST Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
GO
Sign-up for exclusive content. Be the first to hear about Brumpost Tech news.
Subscribe
close-image

astronaut astronomy cosmonaut galaxy RECENT VIDEOS play_circle_outline Watch NASA's Next Spacewalk on Saturday March 13th Apple iPhone 12 Pro Max leaked in a new video RECENT VIDEOS play_circle_outline Alleged iPhone 12 Pro Max leaked video showed some interesting features Zack Snyder's Justice League trailer RECENT VIDEOS play_circle_outline This is the first trailer for the Zack Snyder's Justice League Galaxy Fold 2 RECENT VIDEOS play_circle_outline Galaxy Fold 2 appears in a teaser hinting possible release things to consider before buying a smartphone RECENT VIDEOS play_circle_outline Top 8 things to consider before buying a smartphone in 2020
close-link

WE'VE GOT BUNCH OF COOKIES HERE!

Brumpost uses cookies to enhance your experience and by continuing to use the website, you are giving consent to those cookies being used. To learn more, click below
COOKIE POLICY
close-link
Click Me

Get caught up in minutes with our speedy summary of today’s tech happenings!
SUBSCRIBE