Resources https://www.mandiant.com/ Mandiant's RSS Feed en Anticipating Cyber Threats as the Ukraine Crisis Escalates https://www.mandiant.com/resources/ukraine-crisis-cyber-threats <p><span><span><span>The crisis in Ukraine has already proven to be a catalyst </span></span></span><span><span><span>for aggressive cyber activity that will likely increase as the situation deteriorates.</span></span></span></p> Thu, 20 Jan 2022 19:45:00 -0500 adam.greenberg https://www.mandiant.com/resources/ukraine-crisis-cyber-threats One Source to Rule Them All: Chasing AVADDON Ransomware https://www.mandiant.com/resources/chasing-avaddon-ransomware <p><span><span><span><span><span>This post discusses AVADDON ransomware, and explores how ransomware operators think and continue to turn a profit in a constantly evolving cybercrime ecosystem.</span></span></span></span></span></p> Wed, 19 Jan 2022 17:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/chasing-avaddon-ransomware Proactive Preparation and Hardening to Protect Against Destructive Attacks https://www.mandiant.com/resources/protect-against-destructive-attacks <p><span><span><span><span><span><span>Our latest white paper provides hardening and detection guidance to protect against a destructive attack within an environment.</span></span></span></span></span></span></p> Fri, 14 Jan 2022 15:30:00 -0500 adam.greenberg https://www.mandiant.com/resources/protect-against-destructive-attacks The Cyber Risk Journey, Part One: Where Do We Go From Here? https://www.mandiant.com/resources/cyber-risk-journey-one <p><span><span><span><span>Boards and senior leaders are working to develop a better understanding of how cyber risk is being managed within their organizations.</span></span></span></span></p> Thu, 13 Jan 2022 06:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/cyber-risk-journey-one What’s Better Than Free Threat Intelligence? https://www.mandiant.com/resources/intel-free-upgrade <p><span><span><span>Mandiant Advantage Threat Intelligence Free customers will get upgraded accounts for the first 14 days after an account is approved.</span></span></span></p> Mon, 10 Jan 2022 05:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/intel-free-upgrade Log4Shell Initial Exploitation and Mitigation Recommendations https://www.mandiant.com/resources/log4shell-recommendations <p><span><span><span><span><span><span>We provide an overview of how Log4j impacts organizations, share how attackers have leveraged it in the wild, and provide mitigation recommendations.</span></span></span></span></span></span></p> Wed, 15 Dec 2021 16:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/log4shell-recommendations A Year in Review with Kevin Mandia https://www.mandiant.com/resources/kevin-mandia-year-in-review <p>For our final podcast of 2021, we bring on Mandiant CEO Kevin Mandia to talk about the one-year anniversary of SolarWinds, the year ahead, and more.</p> Wed, 15 Dec 2021 10:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/kevin-mandia-year-in-review No Unaccompanied Miners: Supply Chain Compromises Through Node.js Packages https://www.mandiant.com/resources/supply-chain-node-js <p>In October 2021 we <span><span><span>identified multiple instances of supply chain compromises involving packages hosted on Node Package Manager.</span></span></span></p> Wed, 15 Dec 2021 06:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/supply-chain-node-js Azure Run Command for Dummies https://www.mandiant.com/resources/azure-run-command-dummies <p><span><span><span lang="EN-IE" xml:lang="EN-IE" xml:lang="EN-IE">We highlight Azure Run Commands and provide guidance for mitigations, hunting, and detection mainly from the perspective of the virtual machines at risk from this type of activity.</span></span></span></p> Tue, 14 Dec 2021 11:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/azure-run-command-dummies Now You Serial, Now You Don’t — Systematically Hunting for Deserialization Exploits https://www.mandiant.com/resources/hunting-deserialization-exploits <p><span><span><span>Deserialization vulnerabilities are a class of bugs that have plagued multiple languages and applications over the years.</span></span></span></p> Mon, 13 Dec 2021 05:00:00 -0500 adam.greenberg https://www.mandiant.com/resources/hunting-deserialization-exploits