Mandiant

Today at Google Cloud Next, the company announced several new generative AI enhancements to its security product line in an effort to make it easier to find information from a…

Google is bringing generative AI to its security tooling

Security researchers at Mandiant say China-backed hackers are likely behind the mass-exploitation of a recently discovered security flaw in Barracuda Networks’ email security gear, which prompted a warning to customers…

Mandiant says China-backed hackers exploited Barracuda zero-day to spy on governments

Security researchers have discovered new industrial control system malware, dubbed “CosmicEnergy,” which they say could be used to disrupt critical infrastructure systems and electric grids. The malware was uncovered by…

Researchers uncover Russia-linked malware that could immobilize electric grids

Microsoft has released security fixes for a zero-day vulnerability affecting all supported versions of Windows that has been exploited in real-world attacks. The zero-day bug, tracked as CVE-2022-37969, is described…

Microsoft patches a new zero-day affecting all versions of Windows

Google has announced that its proposed $5.4 billion bid to buy cybersecurity firm Mandiant is now complete. The internet giant revealed plans to acquire publicly traded Mandiant back in March,…

Google closes $5.4B Mandiant acquisition

By understanding the key issues in cross-border tech M&A, an international acquirer can close a successful transaction and achieve its commercial objectives in the United States.

Key issues you should consider before signing an international merger deal

The Russia-linked hacking group behind the infamous SolarWinds espionage campaign is now using Google Drive to stealthily deliver malware to its latest victims. That’s according to researchers at Palo Alto Networks’…

Russian hackers behind SolarWinds are now hiding malware in Google Drive

The FBI, CISA and the U.S. Treasury Department are warning that North Korean state-sponsored hackers are using ransomware to target healthcare and public health sector organizations across the United States.…

US government says North Korean hackers are targeting American healthcare organizations with ransomware

On the face of it, the cybersecurity sector is doing just fine. Demand for cybersecurity products remains high as cyberattacks continue to blight both public and private-sector businesses, and investor…

Cybersecurity startups, once the VC darling, hammered by layoffs

Smartphone manufacturing giant Foxconn has confirmed that a ransomware attack in late May disrupted operations at one of its Mexico-based production plants. “It is confirmed that one of our factories…

Foxconn confirms ransomware attack disrupted operations at Mexico factory

A new espionage actor is breaching corporate networks to steal emails from employees involved in big financial transactions like mergers and acquisitions. Mandiant, which first discovered the advanced persistent threat…

A stealthy new espionage group is targeting corporate mergers and acquisitions

U.S. government agencies are warning that state-backed hackers have developed custom malware that enables them to compromise and hijack commonly used industrial control system (ICS) devices. The advisory, published jointly…

US warns of state-backed malware designed to hijack critical infrastructure systems

Featured Article

The how and why of raising OT security capital

The advent of ransomware and targeted attacks on critical infrastructure have changed the game and are highlighting operational technology security. Today, OT security is a national security issue.

11:17 am PDT • March 31, 2022
The how and why of raising OT security capital

The Lapsus$ hackers used compromised credentials to break into the network of customer service giant Sitel in January, days before subsequently accessing the internal systems of authentication giant Okta, according…

Lapsus$ found a spreadsheet of accounts as they breached Okta, documents show

The U.S. Department of Justice has announced charges against four Russian government employees for a years-long hacking campaign targeting critical infrastructure, including a U.S. nuclear power operator and a Saudi petrochemical…

US charges four Russian spies for hacking Saudi oil facility and US nuclear power plant

Hello friends and welcome to Daily Crunch, bringing you the most important startup, tech and venture capital news in a single package.

Daily Crunch: Discord and Spotify resuming service after widespread outage

At a time when cybersecurity is top of mind for many firms, Google announced it was paying $5.4 billion to acquire security intelligence company Mandiant, giving it access to security…

Google is acquiring security intelligence firm Mandiant for $5.4B

The prolific China APT41 hacking group, known for carrying out espionage in parallel with financially motivated operations, has compromised multiple U.S. state government networks, according to cybersecurity giant Mandiant. The…

China-backed APT41 compromised ‘at least’ six US state governments

Ukrainian cybersecurity officials have warned that Belarusian state-sponsored hackers are targeting the private email addresses of Ukrainian military personnel. Announcing the activity in a Facebook post, Ukraine’s Computer Emergency Response…

Ukraine says Belarusian hackers are targeting its defense forces

Cybersecurity startup Immersive Labs — which recently closed a $75 million Series C funding round giving it a significant war chest — is acquiring U.S.-based cyber startup Snap Labs in…

UK cyber startup Immersive Labs acquires US-based Snap Labs — and there’s a climate angle

Online stock trading platform Robinhood has confirmed it was hacked last week with more than five million customer email addresses and two million customer names taken, as well as a…

Robinhood says millions of customer names and email addresses taken in data breach

Multiple suspects believed to be linked to the Clop ransomware gang have been detained in Ukraine after a joint operation from law enforcement agencies in Ukraine, South Korea and the…

Ukrainian police arrest multiple Clop ransomware gang suspects

Cybersecurity giant FireEye has agreed to sell its products business to a consortium led by private equity firm Symphony Technology Group for $1.2 billion. The all-cash deal will split FireEye,…

FireEye to sell products unit to Symphony-led group for $1.2B

Hackers are exploiting recently discovered vulnerabilities in Exchange email servers to drop ransomware, Microsoft has warned, a move that puts tens of thousands of email servers at risk of destructive…

Hackers are exploiting vulnerable Exchange servers to drop ransomware, Microsoft says

FireEye, normally the first company that cyberattack victims will call, has now admitted it too has fallen victim to hackers, which the company called a “sophisticated threat actor” that was…

Cybersecurity firm FireEye says it was hacked by a nation-state

One week to the U.S. presidential election and things are getting spicy. It’s not just the rhetoric — hackers are actively working to disrupt the election, officials have said, and…

Decrypted: How Twitter was hacked, GitHub DMCA backfires

U.S. prosecutors have charged two Chinese nationals, said to be working for China’s state intelligence bureau, for their alleged involvement in a massive global hacking operation that targeted hundreds of…

US charges two Chinese spies for a global hacking campaign that targeted COVID-19 research