Cyber security company reveals “state-sponsored” cyber attack

US cyber security company FireEye yesterday revealed that it had been the victim of what it believes was a state-sponsored cyber attack.

In a blog post, CEO Kevin Mandia described the sophistication of the recent attack, which he said was “different from the tens of thousands of incidents we have responded to throughout the years”, because the attackers appeared to be “highly trained in operational security”, and able to use “a novel combination of techniques not witnessed by us or our partners in the past.”

Information concerning government customers was sought in the attack, although there is currently no evidence that any customer information was taken ​from incident response, consulting engagements, or metadata from dynamic threat intelligence systems.

“If we discover that customer information was taken, we will contact them directly”, said Mandia.​

Instead, Red Team assessment tools were accessed, used by the company to test and provide diagnostic security services to clients. The company has developed countermeasures in the event that the tools are used or publicly disclosed.

FireEye is investigating the attack along with the FBI, Microsoft and other partners.


The largest data protection, privacy and security event of 2020, now available on-demand!

Featuring four whole days of keynote sessions, panel debates, and an opportunity to network and chew over all things data-related through discussions in public boards and virtual booths, PrivSec Global is now available to watch on-demand.

You can access the content from all four days, by registering for access to our PrivSec Global platform below.

Learn More and Register

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.