Mandiant Archives

Hot Topics

twin, fraud, Google AI cybersecurity Wiz

Google Nears $23 Billion Purchase Of Wiz: Reports

Jon Swartz | July 14, 2024 | acquisition, Cloud Security, google, Mandiant, Wiz

Alphabet Inc.’s Google is closing in on a $23 billion acquisition of cybersecurity firm Wiz – its largest purchase ever ...

Security Boulevard

Ticketmaster is Tip of Iceberg: 165+ Snowflake Customers Hacked

Not our fault, says CISO: “UNC5537” breached at least 165 Snowflake instances, including Ticketmaster, LendingTree and, allegedly, Advance Auto Parts ...

Security Boulevard

Google Continues Mixing Generative AI into Cybersecurity

Jeffrey Burt | May 7, 2024 | cyber threat intelligence, generative AI, Google Cloud Security, Google Threat Intelligence, Mandiant, RSA Conference 2024

The new Google Threat Intelligence cloud service draws from Mandiant, VirusTotal, and its own insights and combines them with generative AI ...

Security Boulevard

Reading the Mandiant M-Trends 2024

Anton Chuvakin | May 1, 2024 | Mandiant, Threat Intelligence, threat report

This is my informal, unofficial, unapproved etc blog based on my reading of the just-released Mandiant M-Trends 2024 report (Happy 15th Birthday, M-Trends! May you live for many googley years…)Vaguely relevant AI visual ...

Stories by Anton Chuvakin on Medium

Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up?

In episode 327 Tom, Scott, and Kevin discuss the findings from Mandiant’s M-Trends 2024 report, highlighting a significant rise in traditional vulnerability exploitation by attackers while observing a decline in phishing. Despite ...

Shared Security Podcast

Google Adds Security Command Center Enterprise to Mandiant Portfolio

Michael Vizard | April 8, 2024 | google, Mandiant, secops, Security Command Center Enterprise, Threat Intelligence

Google has added a Security Command Center Enterprise platform to unify the management of security operations (SecOps) to its Mandiant portfolio ...

Security Boulevard

China Steals Defense Secrets ‘on Industrial Scale’

UNC5174 ❤ UNC302: CVSS 10 and 9.8 vulnerabilities exploited by Chinese threat actor for People’s Republic ...

Security Boulevard

CISA, Mandiant Warn of a Worsening Situation for Ivanti Users

Jeffrey Burt | March 1, 2024 | china espionage, CISA Advisory, Ivanti Vulnerabilities, Mandiant

The federal government and cybersecurity teams are warning organizations that threat groups are exploiting multiple flaws in Ivanti’s VPN appliances despite the vendor’s Integrity Checking Tool (ICT) and even after factory resets ...

Security Boulevard

New Malware in Exploits Targeting Ivanti Vulnerabilities

Rohan Timalsina | February 14, 2024 | BUSHWALK, CHAINLINE, cisa, cisa known exploited vulnerabilities, FRAMESTING, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, LIGHTWIRE, Linux & Open Source News, Mandiant, UNC5221

Google-owned Mandiant has uncovered a new malware exploiting vulnerabilities in Ivanti Connect Secure VPN and Policy Secure devices. These malwares have been utilized by several threat groups, including the China-nexus espionage group ...

TuxCare

VMware vulnerability virtualization Mandiant

Chinese Espionage Group Has Exploited VMware Flaw Since 2021

Jeffrey Burt | January 22, 2024 | china espionage, Mandiant, VMware vCenter Server, vulnerability

A Chinese espionage group spotted last year by Mandiant researchers abusing a flaw that affected VMware virtualization tools has been exploiting another zero-day vulnerability in VMware’s vCenter Server since at least late ...

Security Boulevard