Mandiant Details How Its X Account Was Hacked

January 11, 2024 at 09:21AM Mandiant’s social media account on platform X was hacked, resulting in a cryptocurrency theft campaign generating over $900,000 for cybercriminals. The attack involved promoting a fake website. The company’s investigation revealed a compromised password attack, leading to changes in their security process. Mandiant detailed the ClinkSink campaign and identified numerous … Read more

Mandiant’s X Account Was Hacked Using Brute-Force Attack

January 11, 2024 at 04:01AM Mandiant’s X account was compromised by a brute-force attack, enabling the intruder to spread a cryptocurrency drainer called CLINKSINK. The attack targeted Solana cryptocurrency users and utilized phishing pages to redirect victims to approve fraudulent transactions. This incident reflects a growing trend of financially motivated threat actors targeting cryptocurrency assets … Read more

Mandiant’s X account hacked by crypto Drainer-as-a-Service gang

January 10, 2024 at 05:26PM Mandiant, a cybersecurity firm and Google subsidiary, had its Twitter account hijacked by a Drainer-as-a-Service gang. The attacker redirected over 123,000 followers to a phishing page to steal cryptocurrency, with an estimated minimum of $900,000 in assets stolen. Verified organizations like the U.S. Securities and Exchange Commission have also been … Read more

Continuity in Chaos: Applying Time-Tested Incident Response to Modern Cybersecurity

January 9, 2024 at 10:12AM At Blackhat 2004, the founder of Red Cliff Consulting presented on “The Evolution of Incident Response,” addressing challenges like increasing attack complexity, evolving response methodologies, and the need for pre-incident preparation. Despite technological advancements, core incident response principles remain the same. Issues like email, patching, and human error persist. Three … Read more

X marks the spot: Mandiant restores hijacked Twitter account after attempted crypto heist

January 4, 2024 at 03:11PM On Wednesday, miscreants seized control of security firm Mandiant’s Twitter account to attempt cryptocurrency theft. After being renamed as a phony crypto wallet service account, the hijackers lured users to a fraudulent website for free tokens, prompting concerns of financial losses. The incident highlights Twitter’s ongoing security concerns and risks … Read more

Mandiant’s X (Twitter) Account Hacked to Promote Crypto Scam

January 4, 2024 at 12:22PM Google’s cybersecurity firm Mandiant regained control of its Twitter account after falling victim to a cryptocurrency scam hack. This incident came amidst growing concerns over security on the platform, echoing past high-profile account takeovers. The security of high-profile accounts on Twitter remains an ongoing concern as the platform is targeted … Read more

Mandiant’s Twitter Account Restored After Six-Hour Crypto Scam Hack

January 4, 2024 at 01:48AM Mandiant, a Google Cloud subsidiary, had its Twitter account compromised for over six hours by an unknown attacker to promote a cryptocurrency scam. The account has been restored. The breach involved an impersonation of a crypto wallet service and scam posts about an airdrop. The details of the breach remain … Read more

Mandiant’s account on X hacked to push cryptocurrency scam

January 3, 2024 at 06:39PM Mandiant’s Twitter account was hijacked to facilitate a cryptocurrency scam, with the attacker impersonating the Phantom crypto wallet and promoting a fake website. The scam involved redirecting users to a phishing website to drain their cryptocurrency wallets. Mandiant acknowledged the incident and is working on a resolution, while the hacker … Read more

Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ

December 28, 2023 at 06:00AM Mandiant disclosed zero-day attacks targeting Barracuda Email Security Gateway (ESG) appliances, exploiting CVE-2023-7102 to execute malicious code in Excel email attachments. The China-linked threat actor UNC4841 used this vulnerability to target government, IT, and high-tech organizations. Barracuda promptly deployed updates and urged customers to follow the recommended guidance. UNC4841 has … Read more

Chinese Hackers Exploited New Zero-Day in Barracuda’s ESG Appliances

December 27, 2023 at 08:24AM Chinese threat actors exploited a new zero-day in Barracuda’s Email Security Gateway appliances, deploying backdoors on a limited number of devices. The issue, tracked as CVE-2023-7102, allowed arbitrary code execution via a third-party library. Barracuda released a security update and remediated compromised appliances. This highlights the adaptability of the threat … Read more