December 2020

Staring at the Sun: Thoughts on UNC2452, SUNBURST, SolarWinds and Road Ahead

Cyber- Photokeratitis Some Thoughts On The Events Associated with UNC2452 Like many who have worked in the threat research & intelligence, forensics, and incident response space some time, when I became aware of FireEye’s public breach disclosure earlier this month (09 DEC 2020), it gave me pause. FireEye is without question a global leader in the development and acquisition of technology, services, and intelligence (e.g., Mandiant, iSIGHT Partners, etc.,). Few can or would debate that and even fewer would debate the organization’s knowledge and understanding of the threat landscape. During my time at...

Share Post

U.S. Hackers have likely “gone to ground”

Karim Hijazi, who served as the director of intelligence of the cybersecurity firm Mandiant and now serves as CEO of the security firm Prevailion, said the hackers will likely have “gone to ground” at this point....

Share Post

Hackers Used Obscure Texas IT Vendor to Attack U.S. Agencies

As of mid-day Monday, the malicious update was still available for download on SolarWind’s website, according to Karim Hijazi, founder and chief executive of Prevailion Inc., a Maryland-based cybersecurity firm. Hijazi said his team compared the available download with security alerts identifying the tampered update, and it’s an exact match....

Share Post