Collaborate Disseminate
Stairwell launched Inception, a platform for recursive threat hunting, detection, and response. Inception helps security practitioners decisively and quickly determine if they were compromised—now or in the past—by immediately surfacing threats that ty… Continue reading Stairwell Inception helps organizations get ahead of the most sophisticated attackers
Battle lines are drawn in Congress over legislation that would require companies to report some cyber incidents to the federal government, with industry groups lining up to support a House of Representatives bill poised to create fewer challenges for business leaders than a similar proposal in the Senate. The debate involves questions about how quickly companies would have to report attacks, what kinds of specific intrusions would trigger notification and whether failure to comply with the rules would lead to financial penalties. The idea of breach notification legislation gained momentum following last year’s discovery of the SolarWinds hack that compromised nine federal agencies and some 100 companies, as well as the Colonial Pipeline ransomware attack in May. At issue are such questions as whether companies have 24 or 72 hours to report an incident, along with who would be on the hook outside of critical infrastructure owners and operators, if […]
The post Breach notification window, accountability are focus of coming fight on cyber legislation in Congress appeared first on CyberScoop.
Here’s a look at the most interesting product releases from the past week, featuring releases from FireEye, SailPoint, FORESEE, Digital Guardian and GrammaTech. FireEye XDR: Improving organizations’ capabilities for controlling incidents from detection… Continue reading New infosec products of the week: August 20, 2021
Mandiant announced that Vikram Ramesh, who has a track record of leading highly effective and measurable strategies as a marketing executive, has joined the company as Chief Marketing Officer (CMO). Ramesh reports to FireEye Mandiant President and Chie… Continue reading Vikram Ramesh joins Mandiant as Chief Marketing Officer
Operators of an apparent Russian propaganda campaign shared coronavirus disinformation in an effort to influence the American far-right, according to a report out Tuesday by cybersecurity firm Recorded Future. The findings are included in a new report shedding light on a long-running Russian propaganda campaign known as Operation Secondary Infektion. The years-long campaign has used regional European websites, forged documents and throwaway accounts to further Russia’s political agenda in Europe. Secondary Infektion is perhaps best known for spreading disinformation through small, local websites, then promoting fabricated narratives on social media, with mixed success. Secondary Infektion promotes narratives in line with Russia’s political agenda in Europe, leading researchers to believe the group supports Russia’s intelligence apparatus. Since 2014 the group has staged a number of campaigns, including using fake tweets from accounts like Sen. Marco Rubio, R-Fla. to spread a false narrative that British citizens planned to assassinate Prime Minister Boris […]
The post Suspected Russian operatives tried to stir far right outrage about COVID-19 on 4chan appeared first on CyberScoop.
A vulnerability (CVE-2021-28372) in the SDK that allows IoT devices to use ThroughTek’s Kalay P2P cloud platform could be exploited to remotely compromise and control them, Mandiant researchers have discovered. Further attacks are possible depend… Continue reading Critical bug allows remote compromise, control of millions of IoT devices (CVE-2021-28372)
FireEye introduced FireEye XDR, a unified platform designed to help security operations teams strengthen threat detection, accelerate response capabilities, and simplify investigations. The FireEye XDR platform provides native security protections for … Continue reading FireEye XDR: Improving organizations’ capabilities for controlling incidents from detection to response
Suspected Chinese spies masqueraded as Iranian hackers in a two-year campaign to break into government and telecommunication networks in Israel, security firm FireEye said Tuesday. The alleged Chinese intruders used a hacking tool previously associated with Iranian operatives, and embedded some of their malicious code with Farsi, the predominant language in Iran. It was part of a broader campaign to gather intelligence at organizations in other Middle East and Central Asian countries that has continued this year, according to FireEye. The findings show how spies plant digital evidence in an effort to throw off investigators in the high-stakes world of espionage. The revelations come amid a period of heightened scrutiny of Chinese cyber activity: The U.S. and its European allies in July condemned China’s alleged exploitation of Microsoft software and said that it enabled ransomware attacks. John Hultquist, vice president of threat intelligence at Mandiant FireEye, said the targeting at […]
The post Chinese hackers posed as Iranians to breach Israeli targets, FireEye says appeared first on CyberScoop.
Continue reading Chinese hackers posed as Iranians to breach Israeli targets, FireEye says
ReliaQuest announced the appointments of Brian Foster as Vice President of Product, Paul Kraus as Vice President of Engineering and Dan Wire as Vice President of Brand and Communications. Foster and Kraus bring deep security product experience and are … Continue reading ReliaQuest expands its executive team with new appointments
Ivanti announced that it has been selected by the National Institute of Standards and Technology’s (NIST’s) National Cybersecurity Center of Excellence (NCCoE) to participate as a collaborator in the Implementing A Zero Trust Architecture project. The … Continue reading NIST selects Ivanti on Implementing A Zero Trust Architecture project