FireEye Threat Intelligence Operations

Additional Info

CompanyFireEye
Websitehttp://www.fireeye.com
Company size (employees)1,000 to 4,999

Overview

You can’t stop attacks you don’t know about, which is why threat intelligence plays such an important role within cyber security. FireEye is an intelligence-led company, empowering security teams with forward-looking, high-fidelity, adversary-focused intelligence.

FireEye is positioned to learn, before anyone else, the tools and tactics attackers are using to circumvent security safeguards through our experts, through our intelligence and through our technology. FireEye has spent the past decade building our global threat intelligence. FireEye routinely releases information about adversaries identified by more than 700 highly experienced researchers and analysts located in 20 countries in an effort to protect our world and diminish the threat of cyber attacks. These incident investigations total 350,000+ hours every year.

Rest assured that our seven Cyber Threat Operations Centers are working tirelessly around the globe 24/7 to find evil and stop its impacts. We collect, produce, and apply the best threat intelligence from across the globe. This, in turn, allows us to protect customers against emerging threats faster. Further, this unsurpassed knowledge and supporting data set allows us to build and train models that help us adapt to the scope and scope of the adversary.

How we are different

• The difference between FireEye and the rest is that anyone can talk about the headlines. At FireEye, we live them every day. Election security serves as a great example of this. As the priority of securing free and fair elections grows on a global scale, FireEye feels it’s critical to bring heightened exposure to the situation. FireEye threat intelligence discovered a network of personas believed to be acting in support of Iranian political interests. They used real people’s personas on social networks, took on the personas of political candidates, and leveraged authentic Western media outlets to disseminate propaganda through op-eds, and even interviews.
• As another example, FireEye threat intelligence recently named a new advanced group, APT41. This China-based group penetrated and spied on global tech, communications and healthcare providers for the Chinese government while using ransomware against game companies and attacking cryptocurrency providers for personal profit. This group is highly unique carrying out state-sponsored espionage activity in parallel with financially motivated operations, even using highly targeted malware to identify text messages from specific individuals to do so. FireEye threat intelligence also issued a follow-on report detailing observed threats affecting healthcare organizations.
• FireEye is the undisputed best in the world at threat intelligence. In fact, Forrester has named FireEye the only leader in external threat intelligence services as well as the leader in incident response services. As we innovate, we have been focused on taking this intelligence to the next level. FireEye Expertise On Demand is a new service that helps address the growing talent shortage and lack of cyber experts by helping organizations augment their security teams with our Mandiant frontline experts, threat intelligence, and services when needed at the click of a button. This includes investigations, intelligence briefings, alert triage, remediation, playbook development, SOC training, and more.