ICYMI: FireEye, a Top Cybersecurity Firm, Says It Was Hacked by a Nation-State
On December 8, 2020, a prominent cybersecurity firm, FireEye, announced they were victim to a nation-state attack citing their Red Team toolkit, containing applications used by ethical hackers in penetration tests, was stolen. Five days later, the researchers stumbled across evidence that attackers entered a backdoor in the SolarWinds software “trojanizing SolarWinds Orion business software updates to distribute malware.”
FireEye dubbed it “SUNBURST.”
The following day, SolarWinds filed an SEC Form 8-K report, stating in part that the company “has been made aware of a cyberattack that inserted a vulnerability within its Orion monitoring products.”
Read the New York Times article here.