S1E01: State of the FIRST
Join us as we kick off our FireEye #StateOfTheHack video series. Part podcast, part happy hour hangout, but all freeform. We explain who we are and what we’re doing with this series. “Cyber attack on Olympics”: Our original response to the heightened Olympic risk, Winter Olympics-themed phishing of several South Korean entities, alleged APT28 IOC, WADA, & International Luge Federation correspondence leaks, and of course, Olympic Destroyer #SOURGRAPES. “APT37 report”: We discuss the newest APT group, North Korea’s APT37, the magic number 14, Flash 0day re-use, and MITRE ATT&CK. • https://www.fireeye.com/blog/threat-research/2018/02/apt37-overlooked-north-korean-actor.html “Our latest tool releases”: Recapping some open source tool releases from the past few weeks. • ReelPhish (Pan Chan, Trevor Haskell) - https://www.fireeye.com/blog/threat-research/2018/02/reelphish-real-time-two-factor-phishing-tool.html • GoCrack (Chris Schmitt) - https://www.fireeye.com/blog/threat-research/2017/10/gocrack-managed-password-cracking-tool.html • SimpifyGraph (Jay Smith) - https://www.fireeye.com/blog/threat-research/2018/01/simplifying-graphs-in-ida.html • Pywintrace (Anthony Berglund, Kevin Boyd) - https://www.fireeye.com/blog/threat-research/2017/09/pywintrace-python-wrapper-for-etw.html State of the Hack is FireEye’s monthly live broadcast series, hosted by Christopher Glyer (@cglyer) and Nick Carr (@itsreallynick), that discusses the latest in information security, cyber espionage, attack trends, and tales from the front lines of responding to targeted intrusions. You can catch the web series live each month on @FireEye: https://twitter.com/fireeye