99 Problems but Two-Factor Ain’t One. Two-factor authentication is a best practice for securing remote access, but it's also a Holy Grail for any red team.

We detail three different ways we have seen DNS records be manipulated to enable victim compromises.

Mandiant analyzes h ow attackers can potentially abuse Duo's misconfigurations for 2FA 

APT29 used domain fronting techniques for backdoor access to hide their network traffic. To detect these nation-state attackers requires endpoint visibility, as well as visibility into TLS connections and effective network signatures.

We have been tracking a campaign this year targeting web payment portals that involves on-premise installations of Click2Gov.

Understanding the increasingly complex threats faced by industrial and critical infrastructure organizations is not a simple task.

IDA Pro is popular, so we focus on releasing scripts and plug-ins to help make it more effective at fighting evil.

Mandiant’s Red Team recently discovered a widespread vulnerability affecting Android devices that permits local privilege escalation to the built-in user “radio”, making it so an attacker can potentially perform activities such as viewing the victim’s SMS database and phone history.

FireEye’s Mandiant Red Team recently discovered vulnerabilities present on the Logitech Harmony Hub IoT device that could potentially be exploited, resulting in root access to the device.

We are sharing a new IDAPython library that provides scriptable emulation features to reverse engineers.