Displaying items by tag: Mandiant

The verdict in a case filed by investors against the directors of the software firm SolarWinds, claiming they were aware of the risks that the firm's software posed, but failed to act to prevent devastating attacks that came to light in 2020, has gone in favour of the company.

COMPANY NEWS: Nozomi Networks today announced Accenture Security, IBM Security and Mandiant (now part of Google Cloud) are participants in its new Elite Cyber Defenders Program.

GUEST RESEARCH: Mandiant, now part of Google Cloud, today released the findings of its M-Trends 2023 report. Now in its 14th year, this annual report provides timely data and expert analysis on the ever-evolving threat landscape based on Mandiant frontline investigations and remediations of high-impact cyber-attacks worldwide. The new report reveals the progress organisations globally have made in strengthening defences against increasingly sophisticated adversaries.

COMPANY NEWS: Flashpoint, the globally trusted leader in risk intelligence, has announced an expansion of its partnership with Google Cloud to deploy next-generation intelligence solutions, including generative AI, within the Flashpoint product suite.

Microsoft has released 97 fixes, one of which is for a zero-day, on its Patch Tuesday for the current month.

OT and IoT security specialist Nozomi Networks and Google subsidiary Mandiant have expanded their relationship to assist industrial and enterprise organisations that want to anticipate, diagnose and respond to IT and OT cyber threats to their critical business operations.

COMPANY NEWS: Gigamon, the leading deep observability company, today announced that Dee Dee Acquista has been named vice president of worldwide channel and alliances.

COMPANY NEWS: Rubrik, the zero trust data security company, today announced it has surpassed US$500 million in software subscription annual recurring revenue (ARR). Additionally, the company achieved a net dollar retention rate of greater than 140%, a testament to Rubrik’s ability to retain customers and expand within its customer base.

GUEST RESEARCH Google cybersecurity subsidiary Mandiant has published new research on a China-based threat group using three new malware families affecting USB drives to target the Philippines and greater Southeast Asia region, which have been a focus for Chinese espionage for many years.

GUEST RESEARCH Google cybersecurity subsidiary Mandiant has published new research on a China-based threat group using three new malware families affecting USB drives to target the Philippines and greater Southeast Asia region, which have been a focus for Chinese espionage for many years.

Security firm SolarWinds has avoided a lawsuit filed by investors in Delaware last year, with Delaware Court of Chancery vice-chancellor Sam Glasscock dismissing the suit.

COMPANY NEWS: The Chinese government has launched a major disinformation campaign in the wake of US Speaker Nancy Pelosi's visit to Taiwan, using dozens of bogus media sites to hype the danger associated with the trip and to smear Beijing's critics.

COMPANY NEWS: Mandiant today announced the launch of its digital risk protection solution that harnesses the power of the Mandiant Advantage multi-vendor XDR platform to enable an intelligence-led view of an organisation’s global attack surface and business-impacting activity on the deep and dark web. The solution is comprised of Mandiant offerings and is designed to allow security leaders to proactively mitigate threats before they disrupt business operations.

COMPANY NEWS: Interos, the fast-growing operational resilience company, and Mandiant today announced a strategic partnership to provide advanced insights and analysis to help enterprises defend against cyber attacks and other threats to their operational resilience. The collaborative partnership is designed to bring to market new intelligence based on insights gleaned from the Interos Resilience Lab, as well as Interos’ SaaS platform, and the frontline investigations and remediations Mandiant conducts regarding high impact cyber attacks worldwide.

The NSW transport authority, Transport for NSW, says it has been hit by a second network attack which took aim at the online application used by vehicle examiners to conduct roadworthy inspections.

Security firm Mandiant has released details about a threat actor it has named UNC3524, which infiltrates and resides for long periods in Windows environments where it can collect emails in bulk. The active backdoor is named QUIETEXIT and it is based on the Dropbear SSH client-server software which is generally used in environments with low memory and processor resources.

Security firm Mandiant says it has not mentioned any zero-day exploit usage by Western government agencies in a report about incidents in 2021 because it did not find any exploits which it could identify with reasonable confidence as coming from these sources.

COMPANY NEWS: Mandiant today announced the findings of Mandiant M-Trends 2022, an annual report that provides timely data and insights based on Mandiant frontline investigations and remediations of high-impact cyber attacks worldwide. The 2022 report––which tracks investigation metrics between 1 October 2020 and 31 December 2021—reveals that while significant progress has been made in threat detection and response, Mandiant continues to see adversaries innovate and adapt to achieve their mission in targeted environments.

GUEST RESEARCH: Mandiant has published new research on a set of “exceptionally rare and dangerous cyber attack” tools, called Incontroller.

Proprietary video-telephony software company Zoom has abruptly sacked security researcher Bill Demirkapi who was working for the company's red team.