Google blocked 1,000-plus pro-China fake news websites from its search results Beijing's propaganda buddies aren't just using social media Security25 Nov 2024 | 15
How to spot a North Korean agent before they get comfy inside payroll Mandiant publishes cheat sheet for weeding out fraudulent IT staff Cyber-crime24 Sep 2024 | 19
Iran hunts down double agents with fake recruiting sites, Mandiant reckons Farsi-language posts target possibly-pro-Israel individuals Security30 Aug 2024 | 2
Notorious cyber gang UNC3944 attacks vSphere and Azure to run VMs inside victims' infrastructure Who needs ransomware when you can scare techies into coughing up their credentials? Security17 Jun 2024 | 5
Snowflake customers not using MFA are not unique – over 165 of them have been compromised Mandiant warns criminal gang UNC5537, which may be friendly with Scattered Spider, is on the rampage Security11 Jun 2024 | 13
Casino cyberattacks put a bullseye on Scattered Spider – and the FBI is closing in Interview Mandiant CTO chats to The Reg about the looming fate of this ransomware crew Cyber-crime23 May 2024 | 11
Kremlin's Sandworm blamed for cyberattacks on US, European water utilities Water tank overflowed during one system malfunction, says Mandiant Research17 Apr 2024 | 10
Miscreants are exploiting enterprise tech zero days more and more, Google warns Crooks know where the big bucks are Cyber-crime27 Mar 2024 | 5
Russia's Cozy Bear caught phishing German politicos with phony dinner invites Forget the Riesling, bring on the WINELOADER Cyber-crime23 Mar 2024 | 8
Chinese snoops use F5, ConnectWise bugs to sell access into top US, UK networks Crew may well be working under contract for Beijing Cyber-crime22 Mar 2024 | 5
Number of orgs compromised via Ivanti VPN zero-days grows as Mandiant weighs in Snoops had no fewer than five custom bits of malware to hand to backdoor networks CSO13 Jan 2024 | 4
Mandiant's brute-forced X account exposes perils of skimping on 2FA Speculation builds over whether a nearly year-old policy change was to blame Cyber-crime11 Jan 2024 | 25
X-ploited: Mandiant restores hijacked Twitter account after attempted crypto heist Miscreants mock Google-owned security house: 'Change password please' Security04 Jan 2024 | 9
Russia's Sandworm – not just missile strikes – to blame for Ukrainian power blackouts Online attack coincided with major military action, Mandiant says Security09 Nov 2023 | 38
Critical Citrix bug exploited by data thieves weeks before being patched Updated Time to close those active sessions Cybersecurity Month18 Oct 2023 |
Scattered Spider traps 100+ victims in its web as it moves into ransomware Mandiant warns casino raiders are doubling down on 'monetization strategies' Cyber-crime15 Sep 2023 | 7
Barracuda gateway attacks: How Chinese snoops keep a grip on victims' networks Backdoors detailed, plus CISA releases more IOCs for IT depts to check CSO30 Aug 2023 |
FBI: Who was going around hijacking Barracuda email boxes? China, probably Joins in the chorus of advice to bin the gear instead of trying for a fix Cyber-crime25 Aug 2023 | 7
Add 'writing malware' to the list of things generative AI is not very good at doing Analysis But it may help with fuzzing Cyber-crime18 Aug 2023 | 2
Chinese spies blamed for data-harvesting raids on Barracuda email gateways Snoops 'aggressively targeted' specific govt, academic accounts CSO15 Jun 2023 | 2
North Korea created very phishy evil twin of Naver, South Korea's top portal Think of it as a fake Google tuned for credential capture and you'll understand why authorities want to kill it Security15 Jun 2023 | 9
Spotted: Suspected Russian malware designed to disrupt Euro, Asia energy grids Updated For simulation or for real, we don't like the vibes from this CosmicEnergy Research25 May 2023 | 8
Mandiant's 'most prevalent threat actor' may be living under your roof – the teenager RSA Conference 2023 Plus they are cliquey as all hell Spotlight on RSA25 Apr 2023 | 18
An earlier supply chain attack led to the 3CX supply chain attack, Mandiant says Threat hunters traced it back to malware-laced Trading Technologies' software Cyber-crime20 Apr 2023 | 2
Another year, another North Korean malware-spreading, crypto-stealing gang named Mandiant identifies 'moderately sophisticated' but 'prolific' APT43 as global menace Spotlight on RSA30 Mar 2023 | 2
Here's how Chinese cyber spies exploited a critical Fortinet bug Looks to be the same baddies attacking VMware hypervisors last year Security17 Mar 2023 | 6
Suspected Chinese cyber spies target unpatched SonicWall devices They've been lurking in networks since at least 2021 Security09 Mar 2023 | 2
Warning on SolarWinds-like supply-chain attacks: 'They're just getting bigger' SCSW Industry hasn't 'improved much at all' Mandiant's Eric Scales tells us Cyber-crime03 Mar 2023 | 22
News Corp outfoxed by IT intruders for years All the news that's fit to pwn Cyber-crime28 Feb 2023 | 37
Gootloader malware updated with PowerShell, sneaky JavaScript Perhaps a good time to check for unwelcome visitors Cyber-crime30 Jan 2023 | 5
Malicious Microsoft-signed Windows drivers wielded in cyberattacks Handy tools to kill off security protections get Redmond's stamp of approval CSO14 Dec 2022 | 13
SolarWinds reaches $26m settlement with shareholders, expects SEC action One 8-K filing, two bombshells Cyber-crime04 Nov 2022 | 14
Pro-China crew ramps up disinfo ahead of US midterms. Not that anyone's falling for it Hey, Xi, 滚开 Cyber-crime27 Oct 2022 | 16
As Russia wages disinfo war, Ukraine's cyber chief calls for global anti-fake news fight 'Completely new approaches should be developed to prevent the influence of this propaganda' Security22 Oct 2022 | 62
Good news, URSNIF no longer a banking trojan. Bad news, it's now a backdoor And one designed to slip ransomware and data-stealing code onto infected machines Research21 Oct 2022 | 1
NSA urges enterprises to watch China, Taiwan tensions Have you thought about your supply chains, partnerships, and how far they reach? Security18 Oct 2022 | 2
If you're wondering why Google blew $5b on Mandiant, this may shed some light GCN Automating infosec knowhow, essentially Security11 Oct 2022 | 7
Covert malware targets VMware shops for hypervisor-level espionage Mandiant tracks back operators, finds ties to China CSO29 Sep 2022 | 3
Google Cloud closes $5.4b Mandiant acquisition Now it's really got all eyes on you Security12 Sep 2022 | 9
Mandiant ‘highly confident’ foreign cyberspies will target US midterm elections It is with a heavy heart that we must announce that the hackers are at it again Security08 Sep 2022 | 14
Mandiant links APT42 to Iranian 'terrorist org' 'It's hard to imagine a more dangerous scenario,' Mandiant Intel VP told The Reg Research07 Sep 2022 | 27
China-linked fake news site shows disinformation on the rise Beijing-backed PR firm is behind at least 72 ersatz web titles, Mandiant says Bootnotes05 Aug 2022 | 32
DoJ approves Google's acquisition of Mandiant In Brief Plus: Ukrainian fake news and Uber admits covering up data breach Security25 Jul 2022 | 2
US Cyber Command spots another 20 malware strains targeting Ukraine Plus Mandiant, Cisco Talos uncover digital espionage Research21 Jul 2022 | 1
China is trolling rare-earth miners online and the Pentagon isn't happy Beijing-linked Dragonbridge flames biz building Texas plant for Uncle Sam Bootnotes28 Jun 2022 | 41
We're now truly in the era of ransomware as pure extortion without the encryption Feature Why screw around with cryptography and keys when just stealing the info is good enough Research25 Jun 2022 | 22
What keeps Mandiant Intelligence EVP Sandra Joyce up at night? The coming storm RSA Conference The next wave of security maturity is measuring effectiveness, she told The Register Security09 Jun 2022 | 4
Ukraine's secret cyber-defense that blunts Russian attacks: Excellent backups RSA Conference This is why Viasat attack – rated one of the biggest ever of its kind – had relatively little impact Security08 Jun 2022 | 21
Even Russia's Evil Corp now favors software-as-a-service Albeit to avoid US sanctions hitting it in the wallet Cyber-crime03 Jun 2022 | 7
Iran, China-linked gangs join Putin's disinformation war online They're using the invasion 'to take aim at the usual adversaries,' Mandiant told The Reg Security19 May 2022 | 14
False-flag cyberattacks a red line for nation-states, says Mandiant boss NSA director says he doesn't know of a 'big one' that was successful CSO07 May 2022 | 27
Cyber-spies target Microsoft Exchange to steal M&A info If a network snoop probes like a Kremlin agent, exploits like a Kremlin agent, it might be... Cyber-crime04 May 2022 | 5
Now Mandiant says 2021 was a record year for exploited zero-day security bugs Now that's a race condition Research23 Apr 2022 | 4
US DOJ probes Google's $5.4b Mandiant acquisition Not a social network or an instant-chat app used by tens of millions, so scrutiny it is, then Security22 Apr 2022 | 5
Mandiant shareholder sues to block $5.4b Google deal Investors given 'materially incomplete and misleading' info, it is claimed Security04 Apr 2022 | 3
How AI can help reverse-engineer malware: Predicting function names of code GTC Or: What kind of research Google's getting in its Mandiant takeover AI + ML26 Mar 2022 | 7
Exotic Lily is a business-like access broker for ransomware gangs Google's TAG details operations of prolific group, including 9-to-5 workdays Security18 Mar 2022 | 4
Ukraine invasion: This may be the quiet before the cyber-storm, IT staff warned Updated Now is the time to be a prepper – the computer security kind Security09 Mar 2022 | 30
Cow-counting app abused by China 'to spy on US states' Now that's breaking moos Security09 Mar 2022 | 14
Google buys threat intel giant Mandiant for $5.4bn Artist formerly known as FireEye to boost security for Alphabet's cloudy arm Security08 Mar 2022 | 15
Resistance is ... cheap? Cloudflare, Mandiant, and pals form incident response 'n' cyber insurance borg Trust us with everything, croons septuple-strong partnership Security09 Dec 2021 | 4
If you haven't updated your ThroughTek DVR since 2018 do so now, warns Mandiant as critical vuln surfaces Callooh! Kalay! Outdated SDK component poses threat, says intel firm Security17 Aug 2021 | 10