FireEye Cyberattack Compromises Red-Team Security Tools

2020-12-08 22:08

The attacker targeted and was able to access certain Red Team assessment tools that the company uses to test its customers' security.

"The attackers tailored their world-class capabilities specifically to target and attack FireEye. They are highly trained in operational security and executed with discipline and focus. They operated clandestinely, using methods that counter security tools and forensic examination."

FireEye has also seen no evidence to date that an attacker has utilized the stolen Red Team tools.

Such use of the tools could allow attackers to take over systems, a Tuesday Cybersecurity & Infrastructure Security Agency advisory warned: "Although [CISA] has not received reporting of these tools being maliciously used to date, unauthorized third-party users could abuse these tools to take control of targeted systems," according to the advisory.

"We are not sure if the attacker intends to use our Red Team tools or to publicly disclose them," said Mandia.

News URL

https://threatpost.com/fireeye-cyberattack-red-team-security-tools/162056/

#compromise #cyberattack #fireeye #security #tools

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Fireeye		8	0	8	2	0	10