BBC: US cybersecurity firm FireEye hit by ‘state-sponsored’ attack. “US cybersecurity firm FireEye says it has recently been attacked by a ‘highly sophisticated threat actor’, believing the hacking was state-sponsored. In a blog, FireEye CEO Kevin Mandia said company tools used for testing customers’ security had been stolen.”
Google researchers have found a security bug in FireEye appliances. “Google researchers found a software flaw in several models of FireEye’s security appliances that they say could give a cyberattacker full access to a company’s network. It’s not unheard of to find security flaws in security software, but the latest discovery highlights once again how no technology is immune to such problems.” FireEye has already patched the vulnerability.