Articles about fireeye

Bitcoin

North Korea attacks Bitcoin bods to swell its war chest says FireEye

North Korea appears to have commenced online attacks aimed at acquiring Bitcoin so it can evade sanctions. South Korea's Cyber Warfare Research Center alleged a few weeks ago that at least one Bitcoin exchange had been targeted by a Nork hack, and now FireEye threat researcher Luke McNamara writes that “since May 2017, we have …
Simon Sharwood, 13 Sep 2017
Hotel staff

Kremlin's hackers 'wield stolen NSA exploit to spy on hotel guests in Europe, Mid East'

Russian hackers accused of ransacking the US Democratic party's servers last year may now be targeting hotels in Europe and the Middle East, it is claimed. Miscreants are using various techniques, including the leaked NSA EternalBlue exploit also wielded by the WannaCry malware, to hack into laptops and other devices used by …
John Leyden, 12 Aug 2017

PasteBin data dump: Hackers claim files are from Mandiant FireEye 'breach'

Hackers have leaked what they claim is information stolen from FireEye/Mandiant after apparently breaking into the incident response biz's network. Mandiant has denied this. The miscreants, who branded their attack campaign "Op #LeakTheAnalyst," claimed in a preface to their PasteBin dump that they had "breached [Mandiant's] …
John Leyden, 31 Jul 2017
Thumbs down frownining emoticon

OLE-y hell. Bug in MSFT Word allows total PC p0wnage

All eyes will be on Microsoft's April patch run - due tomorrow - to see whether Redmond gets ahead of a nasty Word zero-day that popped up last week. The hack exploits Object Linking and Embedding and the FireEye researchers who discovered the bug were working with Microsoft, but were pre-empted by a disclosure from McAfee. …

FireEye close to settling lawsuit

FireEye is close to paying $10.3m to settle a class-action lawsuit alleging that the security firm misled investors about the effectiveness of its security technology. Santa Clara Superior Court Judge Peter Kirwan said he was minded to approve the negotiated settlement once details such as proposed attorneys' fees and …
John Leyden, 7 Mar 2017

FireEye execs exit, following hundreds of staff restructured into redundancy

FireEye has bid farewell to two of its top executives, who are departing on the heels of the hundreds of staff who left following CEO Kevin Mandia's restructure of the business last year. The enterprise cybersecurity outfit is still “on the path to profitability” according to Mandia, who announced the departures of his …

Doing business with Asia? Then worry more about security

Organisations across the Asia Pacific are terrible at information security, a Mandiant report contests. While businesses in the United States will detect a hacker in their networks within four months, in line with the global average, it takes 17 months for those in the Asia Pacific region to notice their intruder. The region …
Darren Pauli, 25 Aug 2016

FireEye warns 'massive' ransomware campaign hits US, Japan hospitals

The dangerous and as-yet-undefeated Locky ransomware is being hurled at hospitals across the United States and Japan in a 'massive' number of attacks, according to FireEye researcher Ronghwa Chong. Locky is a popular ransomware variant that will encrypt files in a way that forces users to pay ransoms or cut their losses and …
Darren Pauli, 18 Aug 2016
Embarrassed/exhausted man sits in front of laptop in hipstery office. Photo by Shutterstock

FireEye admits filtering out legitimate emails in sniffer snafu

FireEye has admitted that a snafu involving its email filtering technology meant harmless messages were shuffled off to quarantine for no good reason. The glitch persisted for around two hours during during Monday morning before the problem was resolved, as a statement by the security vendor supplied to El Reg explains. At …
John Leyden, 2 Aug 2016
Arcady http://www.shutterstock.com/gallery-450076p1.html

Flash zero day phished phoolish Microsoft Office users

FireEye has detailed an attack on a recent zero-day vulnerability Adobe patched last week. The flaw (CVE-2916-4117) affects the previous latest version of Adobe Flash and copped a rushed patch after FireEye reported attacks in the wild. Genwei Jiang, a Singaporean senior security engineer, has revealed the details of the …
Darren Pauli, 16 May 2016

Carders cash out hundreds of millions before USA adopts EMV

A hacker group has stolen some 10 million credit cards, putting itself in a position to score US$400 million (£279 million, A$516 million) by infecting 2000 payment terminals with the Trinity point of sales malware. Security firm FireEye and subsidiaries iSIGHT Partners and Mandiant examined the "Fin6" group last year after it …
Darren Pauli, 22 Apr 2016

VXers pass stolen card data over DNS

The NewPosThings malware has spawned an offspring that exploits the DNS protocol to sneak data past firewalls. The VXers have reasoned DNS has a couple of advantages for data exfiltration. Since the enterprise network can't talk to the Internet without it, it's unlikely to be blocked; and since it's probably thought of as more …

Filename-handling slip let attackers evade FireEye analysis

Researchers at Blue Frost Security have disclosed a bug that let them evade FireEye's analysis engine, getting a short-lived but dangerous way to whitelist malware. The issue, for which FireEye has issued a patch, is that the analysis engine doesn't properly sanitise filename inputs given to its Windows batch script. As Blue …

FireEye flamed: A single email will grant total network access

Researchers at the Google's Project Zero security research team have found a brutal hole in FireEye kit that allows attackers to lay waste to corporate networks with a single email. The flaw, dubbed "666" from its Project Zero vulnerability number, is a passive monitoring hole that respected hacker Tavis Ormandy describes as a …
Darren Pauli, 16 Dec 2015

Windows' Nemesis: Pre-boot malware pwns payment processors

Cybercrooks targeting payment card data have developed a sophisticated malware that executes before the operating system boots. Security researchers at FireEye / Mandiant came across the rarely seen so-called bootkit technique during a recent investigation at an organisation in the financial transaction processing industry. …
John Leyden, 7 Dec 2015

Hong Kong hacks hacked in democracy protest yap flap

Chinese hackers who previously popped Western financial firms are now using Dropbox to target Hong Kong based journalists, FireEye says. The group, suspected to be an outfit known as "admin@338", is using the cloud service to host command and control for its infection operations. Its attacks drop the backdoor payload dubbed …
Darren Pauli, 2 Dec 2015
spies_648

FireEye: The face of hacking is changing – and it's getting uglier

Cyberattacks from Russia have increased because of sanctions related to the Ukraine while assaults from Iran have dropped over recent months, thanks to the recent Iran nuclear deal. David DeWalt, FireEye chief exec, said these changes show how the diplomatic landscape affects what is happening in cyberspace even though the …
John Leyden, 21 Sep 2015
android_toys_648

In brief: Android security updates, FireEye hushes infosec bod, Feds blab UK school IT vuln

Vulture nybbles Google has emitted its first monthly batch of security updates for the latest version of Android – as promised in early August. The web giant vowed to regularly release fixes for vulnerabilities after it was rocked by the Stagefright bug that affected potentially hundreds of millions of devices. The first patch batch is …
Team Register, 12 Sep 2015

Create a news alert about fireeye, or find more stories about fireeye.

Biting the hand that feeds IT © 1998–2017