Lucene search
K

513 matches found

The Hacker News
The Hacker News
added 2020/12/16 5:11 p.m.34 views

New Evidence Suggests SolarWinds' Codebase Was Hacked to Inject Backdoor

The investigation into how the attackers managed to compromise SolarWinds' internal network and poison the company's software updates is still underway, but we may be one step closer to understanding what appears to be a very meticulously planned and highly-sophisticated supply chain attack. A ne...

8.2AI score
Exploits0
ThreatPost
ThreatPost
added 2020/12/16 5:5 p.m.42 views

The SolarWinds Perfect Storm: Default Password, Access Sales and More

SECOND UPDATE A perfect storm may have come together to make SolarWinds such a successful attack vector for the global supply-chain cyberattack discovered this week. Researchers said that includes its use of a default password “SolarWinds123” that gave attackers an open door into its...

7.5AI score
Exploits0References19
Krebs on Security
Krebs on Security
added 2020/12/15 5:41 p.m.34 views

SolarWinds Hack Could Affect 18K Customers

The still-unfolding breach at network management software firm SolarWinds may have resulted in malicious code being pushed to nearly 18,000 customers, the company said in a legal filing on Monday. Meanwhile, Microsoft should soon have some idea which and how many SolarWinds customers were affecte...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/15 9:51 a.m.35 views

Nearly 18,000 SolarWinds Customers Installed Backdoored Software

SolarWinds, the enterprise monitoring software provider which found itself at the epicenter of the most consequential supply chain attacks, said as many as 18,000 of its high-profile customers might have installed a tainted version of its Orion products. The acknowledgment comes as part of a new...

0.3AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/12/15 5:26 a.m.43 views

Solorigate/Sunburst : FireEye Breach Leveraged SolarWinds Orion Software

Update Dec 23, 2020: Added new section describing how to reduce risk with File Integrity Monitoring. Update Dec 22, 2020: FireEye Red Team tools & Solorigate/SUNBURST On December 13, SolarWinds released a security advisory regarding a successful supply-chain attack on the Orion management platfor...

0.8AI score
Exploits0
Broadcom
Broadcom
added 2020/12/15 12:0 a.m.6 views

BSA-2020-1174

Security Advisory ID : BSA-2020-1174 Component : Theft of FireEye Red Team Tools Revision : 1.0 Brocade Security is aware of the news reporting the Theft of FireEye Red Team Tools by a highly sophisticated threat actor. More information atTheft of FireEye Red Team Tools...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/12/14 7:45 p.m.53 views

SolarWinds advanced cyberattack: What happened and what to do now

We learned more about the sophisticated attack first disclosed on December 8 when security firm FireEye reported it had been the victim of a state-sponsored adversary that stole Red Team assessment tools. On December 13 there was a new development when IT company SolarWinds announced it had been...

Exploits0
ThreatPost
ThreatPost
added 2020/12/14 7:8 p.m.59 views

DHS Among Those Hit in Sophisticated Cyberattack by Foreign Adversaries – Report

The U.S. Department of Homeland Security DHS, plus the Treasury and Commerce departments, have been hacked in an attack related to the FireEye compromise last week, according to reports. In addition, defense contractors and enterprises were caught up in the attack, FireEye said, which was carried...

Exploits0References14
Rapid7 Blog
Rapid7 Blog
added 2020/12/14 6:23 p.m.55 views

SolarWinds SUNBURST Backdoor Supply Chain Attack: What You Need to Know

On Dec. 12, 2020, FireEye provided detailed information on a widespread attack campaign involving a backdoored component of the SolarWinds Orion platform, which is used by organizations to monitor and manage IT infrastructure. FireEye has given the campaign an identifier of UNC2452 and is further...

7.5CVSS9.8AI score0.9198EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2020/12/14 4:54 p.m.38 views

A week in security (December 7 – December 13)

Last week on Malwarebytes podcast we talked to Doug Levin, founder of the K12 cybersecurity resource center and advisor to the K12 Security Information Exchange, about how schools can plan for a cybersecure 2021. We also released a Malwarebytes Labs report revealing that 50 percent of schools did...

7.3AI score
Exploits0
Talos Blog
Talos Blog
added 2020/12/14 6:18 a.m.45 views

FireEye Breach Detection Guidance

Update 12/14: Cisco Talos has implemented additional blocks in relation to the supply chain attack on SolarWinds® Orion® Platform. The U.S. Cybersecurity and Infrastructure Security Agency has issued Emergency Directive 21-01 due to this campaign. Talos is continuing to investigate this matter. I...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/14 5:44 a.m.4 views

US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor

State-sponsored actors allegedly working for Russia have targeted the US Treasury, the Commerce Department's National Telecommunications and Information Administration NTIA, and other government agencies to monitor internal email traffic as part of a widespread cyberespionage campaign. The...

6.1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/14 5:44 a.m.368 views

US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor

State-sponsored actors allegedly working for Russia have targeted the US Treasury, the Commerce Department's National Telecommunications and Information Administration NTIA, and other government agencies to monitor internal email traffic as part of a widespread cyberespionage campaign. The...

10CVSS9AI score0.99999EPSS
Exploits223
CISA
CISA
added 2020/12/13 12:0 a.m.18 views

Active Exploitation of SolarWinds Software

The Cybersecurity and Infrastructure Security Agency CISA is aware of active exploitation of SolarWinds Orion Platform software versions 2019.4 HF 5 through 2020.2.1 HF 1, released between March 2020 and June 2020. CISA encourages affected organizations to read the SolarWinds and FireEye advisori...

6.7AI score
Exploits0References3
Malwarebytes
Malwarebytes
added 2020/12/10 9:37 p.m.37 views

Malwarebytes detects leaked tools from FireEye breach

Hello folks! If you have not heard yet, the security firm FireEye has had a breach of many red team assessment tools used for identification of vulnerabilities to help protect customers. While it is not known exactly who was behind this attack, a big concern is the sharing and use of these stolen...

1.5AI score
Exploits0
Talos Blog
Talos Blog
added 2020/12/10 11:0 a.m.24 views

Threat Source newsletter (Dec. 10, 2020)

Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers. Cyber security firm FireEye recently disclosed an incident that was reported to have resulted in the inadvertent disclosure of various internally developed offensive security tools OSTs that were used across FireEye red-team...

1.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/12/10 12:48 a.m.1636 views

Solorigate/Sunburst : Theft of Cybersecurity Tools | FireEye Breach

Update Jan 5, 2021: New patching section with two new dashboard widgets showing the number of missing FireEye-related patches in your environment and the number of assets in your environment missing one of those patches. Update Dec 23, 2020: Added a new section on compensating controls. Update De...

10CVSS0.3AI score0.99999EPSS
Exploits393
HackRead
HackRead
added 2020/12/09 6:28 p.m.30 views

Cyber Security giant FireEye hacked by a foreign government

By Sudais Asif FireEye has stated that they have been resetting the passwords of users for the previous 2 weeks as a part of its mitigatory actions. This is a post from HackRead.com Read the original post: Cyber Security giant FireEye hacked by a foreign government...

3AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/12/09 12:36 p.m.27 views

FireEye Hacked

FireEye was hacked by -- they believe -- "a nation with top-tier offensive capabilities": During our investigation to date, we have found that the attacker targeted and accessed certain Red Team assessment tools that we use to test our customers’ security. These tools mimic the behavior of many...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/09 9:9 a.m.4 views

Cybersecurity Firm FireEye Got Hacked; Red-Team Pentest Tools Stolen

FireEye, one of the largest cybersecurity firms in the world, said on Tuesday it became a victim of a state-sponsored attack by a "highly sophisticated threat actor" that stole its arsenal of Red Team penetration testing tools it uses to test the defenses of its customers. The company said it's...

5.8AI score
Exploits0
Rows per page
Query Builder