Lucene search
K

9 matches found

Qualys Blog
Qualys Blog
added 2021/02/01 8:40 p.m.1009 views

Unpacking the CVEs in the FireEye Breach – Start Here First

In a blog post on Dec. 22, 2020, Qualys revealed it has identified 7.5 million instances of vulnerability to the stolen FireEye Red Team assessment tools across an anonymized set of its 15,700-member customer base. Of the 7.5 million instances of vulnerability, 99.84% were caused by only 8 CVEs,...

10CVSS0.4AI score0.99999EPSS
Exploits228
Imperva Blog
Imperva Blog
added 2021/01/05 4:48 p.m.44 views

2020 Ends With A Bang

December 2020 was an eventful month in cyber security. This blog recaps three of the major security events we saw towards the end of last year. December began with FireEye’s breach announcement that included a leak of its red team tools arsenal. Quickly after this announcement, Imperva Threat...

0.1AI score
Exploits0
Krebs on Security
Krebs on Security
added 2020/12/18 6:33 p.m.87 views

VMware Flaw a Vector in SolarWinds Breach?

U.S. government cybersecurity agencies warned this week that the attackers behind the widespread hacking spree stemming from the compromise at network software firm SolarWinds used weaknesses in other, non-SolarWinds products to attack high-value targets. According to sources, among those was a...

9CVSS1AI score0.23771EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2020/12/14 4:54 p.m.38 views

A week in security (December 7 – December 13)

Last week on Malwarebytes podcast we talked to Doug Levin, founder of the K12 cybersecurity resource center and advisor to the K12 Security Information Exchange, about how schools can plan for a cybersecure 2021. We also released a Malwarebytes Labs report revealing that 50 percent of schools did...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/14 5:44 a.m.4 views

US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor

State-sponsored actors allegedly working for Russia have targeted the US Treasury, the Commerce Department's National Telecommunications and Information Administration NTIA, and other government agencies to monitor internal email traffic as part of a widespread cyberespionage campaign. The...

6.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/12/10 9:37 p.m.37 views

Malwarebytes detects leaked tools from FireEye breach

Hello folks! If you have not heard yet, the security firm FireEye has had a breach of many red team assessment tools used for identification of vulnerabilities to help protect customers. While it is not known exactly who was behind this attack, a big concern is the sharing and use of these stolen...

1.5AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/12/10 12:48 a.m.1635 views

Solorigate/Sunburst : Theft of Cybersecurity Tools | FireEye Breach

Update Jan 5, 2021: New patching section with two new dashboard widgets showing the number of missing FireEye-related patches in your environment and the number of assets in your environment missing one of those patches. Update Dec 23, 2020: Added a new section on compensating controls. Update De...

10CVSS0.3AI score0.99999EPSS
Exploits393
The Hacker News
The Hacker News
added 2020/12/09 9:9 a.m.4 views

Cybersecurity Firm FireEye Got Hacked; Red-Team Pentest Tools Stolen

FireEye, one of the largest cybersecurity firms in the world, said on Tuesday it became a victim of a state-sponsored attack by a "highly sophisticated threat actor" that stole its arsenal of Red Team penetration testing tools it uses to test the defenses of its customers. The company said it's...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2017/11/02 5:48 a.m.10 views

'LeakTheAnalyst' Hacker Who Claimed to Have Hacked FireEye Arrested

Remember the hacker who claimed to have breached FireEye late July this year? That alleged hacker has been arrested and taken into custody Thursday by international law enforcement, FireEye CEO Kevin Mandia informed the media. Late July, the hacker, whose name has not yet been disclosed, managed ...

6.8AI score
Exploits0
Rows per page
Query Builder