THE CULPRIT BEHIND THE FIREEYE 2015 HACK ARRESTED

The hacker, yet to be publicly identified, who carried out the 2015 doxing attack against Mandiant, a FireEye owned firm based in Virginia, was arrested last 02 November 2017 by international law enforcers.

FireEye is an international private cyber-security company known for their impenetrability and reliability.  FireEye conductions cyber-security operations for enormous companies and stands as their vanguard against cyber-threats and attacks.  However, the acclaimed security company was breached themselves.

Last 2015, one of the employees of Mandiant, Adi Peretz, was allegedly hacked and got almost 32 megabytes of his personally identifiable information disclosed over the internet including account login information, personal contacts, certain screenshots, and other personal details.

The leaked credentials were posted on Pastebin with the following remarks:

“It was fun to be inside a giant company named “Mandiant” we enjoyed watching how they try to protect their clients and how their dumb analysts are trying to reverse engineer malware and stuff.”

The motives of the hacker were still unknown by then.  The hacking was known across the social media as #LeakTheAnalyst

FireEye, in response to the hacking last 2015, publicly stated that there was no evident breach in their systems.  They have also claimed that the attack was merely an attack directed on the social media accounts of the victim.

Only recently, after tremendous costs and efforts from FireEye, as they have admitted, the 2015 hacker was finally arrested by international law enforcers.  His identity is yet to be disclosed along with what charges FireEye will file.

In this recent arrest, FireEye has redeemed their impenetrable status and averred that the company was not negligible to such breach.

Hackers who conduct malicious cyber activities should be dealt with more seriously.  In this rapidly-progressing computer age, the people’s lives and reputation rely heavily in online credentials.  These credentials should be protected by the owners themselves, private companies, and even the government itself.

Policies like social media content filtering should be imposed at workplaces to prevent unwanted leakage of personally identifiable information.

Users should likewise protect their own personal credentials especially those who work at cyber-security firms and specialized government institutions.  A breach in their personal lives means a breach in the entirety of the system, and could compromise even the most secure networks.  Credentials are highly important in terms of cyber-security.

 

Manny Cuevas

My name is Manny Cuevas a Security Researcher / Engineer for about 15 years that focuses on Web and Mobile applications and other platforms from the Island of Sulu, Philippines. I’m also a scientist, inventor and a top ranked hacker in the world that bypass all security systems.

 

Leave a Reply

Your email address will not be published. Required fields are marked *