"FireEye Cyberattack Compromises Red-Team Security Tools"
Cybersecurity firm FireEye has recently been affected by an attack where adversaries stole their Red Team assessment tools that the company uses to test its customers' security. Researchers believe that state-sponsored actors were behind the hack based on the techniques and sophistication of the attack. The stolen tools range from simple scripts used to automate reconnaissance to entire frameworks similar to publicly available technologies such as CobaltStrike and Metasploit. FireEye stated that none of these tools contain zero-day exploits and that they have seen no evidence to date that an adversary has utilized the stolen Red Team tools. The Cybersecurity and Infrastructure Security Agency (CISA) are warning that attackers could use the tools to take control of targeted systems.
Threatpost reports: "FireEye Cyberattack Compromises Red-Team Security Tools"