A former NSA hacker breaks down the FireEye hack

preview_player
Показать описание


Turn to CNBC TV for the latest stock market news and analysis. From market futures to live price updates CNBC is the leader in business news worldwide.


Connect with CNBC News Online

#CNBC
#CNBCTV
  1. CNBC Television
  2. Power Lunch
  3. CNBC
  4. business news
  5. finance stock
  6. stock market
Рекомендации по теме
A former NSA 0:05:29

A former NSA hacker breaks down the FireEye hack

Former NSA hacker: 0:04:11

Former NSA hacker: Putin is 100% connected to criminal group that hacked Colonial Pipeline

Watch This Russian 0:02:56

Watch This Russian Hacker Break Into Our Computer In Minutes | CNBC

Ex-NSA Hacker's top 0:01:00

Ex-NSA Hacker's top 3 things you need to do to break into Cybersecurity #shorts

Need to disincentivize 0:03:53

Need to disincentivize ransomeware groups: Former NSA hacker

How companies can 0:03:30

How companies can prevent future hackings: Former NSA hacker

Former NSA Director 0:04:08

Former NSA Director Mike Rogers on Colonial Pipeline hack, cybersecurity

Former NSA Hacker 0:00:56

Former NSA Hacker Uncovers Shocking Truths About Cybersecurity

From NSA Hacker 0:55:57

From NSA Hacker To Post Quantum Encryption with David Holtzman

Former NSA hacker 0:05:33

Former NSA hacker talk about national security concerns related to TikTok

Leaked NSA Report 0:02:02

Leaked NSA Report Reveals Russian Hackers Tried Breaking Into US Election Systems

Former NSA Employee 0:00:28

Former NSA Employee Arrested For Espionage

Did you hear 0:00:27

Did you hear about the NSA hack? Greatest hacks at #defcon

Another massive NSA 0:01:10

Another massive NSA data breach, Cyber Monday sales break record (Tech Today)

Former NSA executive 0:02:01

Former NSA executive on suspected Russian cyberattack on U.S. agencies

Hackers claim to 0:00:46

Hackers claim to offer stolen NSA-developed malware in online auction

😡 NSA HACKED 0:00:29

😡 NSA HACKED TUCKER CARLSON'S PHONE!

How the NSA's 0:00:51

How the NSA's Secret Elite Hacking Unit Works | FRONTLINE

Google 'outraged' at 0:02:17

Google 'outraged' at NSA hacking claim

Former NSA hacker: 0:35:37

Former NSA hacker: top skills, jobs and hacking in 2021

Ex-NSA contractor may 0:01:55

Ex-NSA contractor may have compromised foreign intelligence officers

NYT: NSA hack 0:01:48

NYT: NSA hack bigger than Snowden

Former NSA contractor 0:00:26

Former NSA contractor released from prison

Ex-NSA hacker tools 1:16:40

Ex-NSA hacker tools for real world pentesting

Комментарии
Автор

Despite working for one of their competitors, I really applaud the approach FireEye took towards disclosing the attack, and releasing mitigations for the tools which got exfiltrated. That's a solid move, and they're definitely doing the right thing.

There are only two types of company: Those who have been breached, and those who don't know they've been breached. People calling for FireEye to be shut down or punished for this are morons. They were a high-profile, high-value target, and a breach was inevitable. They will recover from this, and their disclosure is, quite frankly, a perfect example of what one *should* do in a breach.

MikeSimoneLV
Автор

lol hacker stealing hacking tools from other hackers

thewolfofswingthat
Автор

This is like a drug dealer robbing other drug dealers.

JerryLee..
Автор

This guest, David, did a great job explaining the issue.

the_DOS
Автор

Solarwind back door password solarwind123 lmao

zolagb
Автор

I am curious as to what "techniques never seen before by us in all our past investigations" are those those hackers used

puyatecla
Автор

I’d buy Fireeye stocks now when they’re low. They’ll survive this.

Sueloveschoc
Автор

It’s sad this man discredits himself. He clearly did not read Fireeye’s reports available publicly on their website.

Rickety
Автор

So...this security company was hacked and lost these tools? That is just as concerning and what does it say about the security company?

watchchat
Автор

I don't hear Trump threatening to take Russia to court. He's out playing golf again.

alanmorris
Автор

My biggest question is, WHY ARE OUR GOVERNMENT SERVERS CONNECTED TO THE INTERNET IN THE FIRST PLACE???

nozmo
Автор

This is why software should not be a substitute for CYBERSECURITY people.

Ms.Robot.
Автор

Imagine FIREYE is Last night me and my friend were discussing about which is most secure phone out there 🤔

shainz
Автор

This "expert" David Kennedy fails to even mention that it was SolarWinds' official ver of Orion software had embedded malware /attack tool(s) detected by Fireeye in own network infrastructure. Fireeye was capable of identifying the tool and reported so others can safeguard themselves. Then, the expert failed to mention that other SolarWinds Orion customers running those versions could also have been hacked, but they or their security consultants just didn't even knew about it till Fireeye disclosure. Lastly, after admitting there "... we don't for sure ..." (ummm, about the culprit), he goes on and on Russia probably because it makes much more sensational news. You want to learn about security attacks, just go to some network security vendor's website. SANS also posted on Youtube a webcast on this attack.

Here is Fireeye's own blog on this specific attack mentioning SolarWinds but no Russia or China:

Threat Research
Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor
December 13, 2020 | by FireEye
...
...<snip>
FireEye discovered a supply chain attack trojanizing SolarWinds Orion business software updates in order to distribute malware we call SUNBURST.
...<snip>

arifsjc
Автор

Who payed him off to push Russia and not china

Thumper
Автор

Hmmm. You better tell Fireeye!! Because THEY say theres no evidence it’s Russia. They created a whole new team designation for this hack.

Rickety
Автор

FiverEyes!

I still don't know how to operate Windows OS and have only watched a few YouTube vids on geopolitics so Im gonna enter my staunch opinion here:

...

whatabouttheearth
Автор

Someone must've had quite a price...

DonDarrelMendozaTadaya
Автор

Dave Kennedy is awesome. I met him several times at DerbyCon.

jonboybilly
Автор

0:33 wait so FireEye was hacking them first?

Skankhunt.