The most popular and comprehensive Open Source ECM platform
Let us know more
Cyberhacking: Even Security Pros are Vulnerable
If a top cybersecurity company can be hacked, it should give you pause about the safety of your information online.
Earlier this week FireEye’s CEO, Kevin Mandia, announced that their company had been hacked and some of the assessment tools used by FireEye to test customer security had been accessed.
FireEye is in the business of protecting companies from hacking attacks. FireEye isn’t the first security company to be hacked. Bit9, Kaspersky Lab and RSA all have experienced breaches.
Matt Gorham, assistant director of the FBI’s cyber division, said that “preliminary indications show an actor with a high level of sophistication consistent with a nation-state.”
Thomas Rid, a professor of strategic studies at Johns Hopkins University, told the Wall Street Journal that “anybody who is going after the top bespoke cybersecurity companies that have threat-intelligence and incident-response capabilities has to be extremely confident and also slightly reckless at the same time. Because the chances that they get caught are high.”
The Washington Post reported that Russian intelligence hackers from a group known as APT 29 or Cozy Bear carried out the breach, but the investigation of verifying this is ongoing.
Mandia said that “these tools [that were stolen from FireEye] mimic the behavior of many cyberthreat actors and enable FireEye to provide essential diagnostic security services to our customers. None of the tools contain zero-day exploits. Consistent with our goal to protect the community, we are proactively releasing methods and means to detect the use of our stolen red team tools.”
