The guy who claimed to have hacked FireEye July this year has been arrested.
Late July, a nameless attacker managed to hack online accounts of a Senior Threat Intelligence Analyst an Mandiant, FireEye’s cyber forensic consulting arm, which was acquired in 2013. Back then, Reuters reported the incident.
“We are aware of reports that a Mandiant employee’s social media accounts were compromised. We immediately began investigating this situation, and took steps to limit further exposure,” a FireEye spokesman said.
“Our investigation continues, but thus far we have found no evidence FireEye or Mandiant systems were compromised.”
At that time, the hacker claimed that he started operation #leaktheanalyst for exposing security analysts that hunt hackers. He also claimed to have had complete access to the company’s internal systems since 2016.
However, later in August, the company said that it found no evidence of a compromised internal network.
“For the past 90 days, we have worked closely with law enforcement, both domestically and internationally, to assist in the investigation and identification of the anonymous person who is responsible for the attack on one of our employees and who falsely claimed to have breached our corporate networks,” said Kevin Mandia, CEO and Director of FireEye.
Mr. Mandia announced the hacker’s arrest at the company’s Q3 Earnings Results Conference Call on Wednesday.
“I don’t want to underestimate the unfairness of the situation of an anonymous person making false claims,” Mandia told CRN. “You have to prove the negative, which is really annoying.”
“These attackers rarely, if ever get caught…Over my career, I have found it frustrating how little risk or repercussions exist for the attackers, who hide behind the anonymity of the internet to cause harm to good, well-intentioned people,” Mandia said.
“Therefore, I am pleased that, in this case, we were able to impose repercussions for the attacker and achieve a small victory for the good guys.”
We still don’t know the identity of the attacker who hacked FireEye, but we will update this post with their when we have more security news.
The attack was less hurtful than the one music company Vevo went through.