FireEye hit by suspected cyber attack from state actor

By William Smith
US cybersecurity firm FireEye has said that it has sustained a cybersecurity attack, likely from a state actor...

US cybersecurity firm FireEye has said that it has sustained a cybersecurity attack, likely from a state actor.

The intelligence security company professes an emphasis on intelligence as well as technology in the fight against cyber attacks, with its unified security platform, Helix, that evolves and updates with the knowledge it has gained to respond to new breaches.

It is usually not the subject of attackers aims, with its investigative services having been employed in the cases of attacks against organisations including JP Morgan Chase and Sony Pictures.

The date of the hack was not disclosed, with FireEye only saying “recently”. The attack resulted in “Red Team assessment tools”, which FireEye uses to test its clients’ defences, being stolen, and led to an 8% drop in its share price. Also

In a blog post, CEO Kevin Mandia said: “Recently, we were attacked by a highly sophisticated threat actor, one whose discipline, operational security, and techniques lead us to believe it was a state-sponsored attack. Our number one priority is working to strengthen the security of our customers and the broader community.”

“Based on my 25 years in cyber security and responding to incidents, I’ve concluded we are witnessing an attack by a nation with top-tier offensive capabilities. This attack is different from the tens of thousands of incidents we have responded to throughout the years. The attackers tailored their world-class capabilities specifically to target and attack FireEye. They are highly trained in operational security and executed with discipline and focus. They operated clandestinely, using methods that counter security tools and forensic examination. They used a novel combination of techniques not witnessed by us or our partners in the past.”

The company said it was working with partners including the FBI and Microsoft to investigate, and monitor whether the stolen tools are put to malicious use, while also releasing preventative countermeasures.

The news comes after IBM researchers discovered that the cold supply chain used to deliver COVID-19 vaccines was being targeted by hackers

Share

Featured Articles

Cyber increasingly a growth enabler, Deloitte study shows

Deloitte's 2023 Global Future of Cyber survey highlights the imperative for organisations to move cybersecurity from threat assessment to growth enabler

Trillions of dollars created by growing US wireless industry

In 2020 alone, the US wireless industry created US$1.3 trillion in gross output, $825 billion in GDP, and over four million jobs for the national economy

Energy crisis posing threat to IT companies' sustainability

A staggering 79% of IT decision-makers believe that the current energy crisis will have a knock-on effect on their net zero sustainability strategies

Data backup gives way to data protection and cybersecurity

Cloud & Cybersecurity

Rich investors drawn to digital assets despite crypto crash

Digital Transformation

Five minutes with: Katie Nykanen, Group CTO at QA

Digital Transformation