The most common exploit paths enterprises leave open for attackers
Exposed version control repositories, leaked secrets in public code repositories, a subdomain vulnerable to takover, exposed Amazon S3 buckets, and Microsoft Exchange Server …
Mandiant
SnapAttack partners with Mandiant to protect organizations against cyber threats
SnapAttack and Mandiant announced a strategic partnership to integrate Mandiant’s adversary intelligence along with SnapAttack’s adversary emulation and no-code threat …
Mandiant collaborates with Interos to advance supply chain cyber risk management for enterprises
Mandiant and Interos announced a strategic partnership to provide advanced insights and analysis to help enterprises defend against cyber attacks and other threats to their …
Stealthy APT group plunders very specific corporate email accounts
An eminently sophisticated and stealthy APT group is going after specific corporate email accounts and has, on occasion, managed to remain undetected in victim environments …
New threat groups and malware families emerging
Mandiant announced the findings of an annual report that provides timely data and insights based on frontline investigations and remediations of high-impact cyber attacks …
APT group has developed custom-made tools for targeting ICS/SCADA devices
Just a few days after news of attempted use of a new variant of the Industroyer malware comes a warning from the US Cybersecurity and Infrastructure Security Agency (CISA): …
Log4Shell exploitation: Which applications may be targeted next?
Spring4Shell (CVE-2022-22965) has dominated the information security news these last six days, but Log4Shell (CVE-2021-44228) continues to demand attention and action from …
Mandiant achieves FedRAMP Ready designation to improve security for federal agencies
Mandiant announced that it has earned Federal Risk and Authorization Management Program (FedRAMP) Ready designation at the High Impact level for Mandiant Advantage Automated …
Google to acquire Mandiant for $5.4 billion
Mandiant announced that it has entered into a definitive agreement to be acquired by Google for $23.00 per share in an all-cash transaction valued at approximately $5.4 …
Infosec products of the month: February 2022
Here’s a look at the most interesting products from the last month, featuring releases from: Arista Networks, Blueshift Cybersecurity, Bugcrowd, Cato Networks, Cofense, …
New infosec products of the week: February 18, 2022
Here’s a look at the most interesting products from the past week, featuring releases from Blueshift Cybersecurity, Bugcrowd, CoSoSys, F5 Networks, Mandiant, Orca Security, …
Mandiant Ransomware Defense Validation helps prevent specific ransomware attacks
Mandiant released Ransomware Defense Validation within the Mandiant Advantage platform to give security leaders continuous and quantifiable insight on their ability to prevent …