US cyber security firm FireEye has been the subject of a cyber attack by a nation with top-tier offensive capabilities.
The hackers are understood to have used novel techniques to steal FireEye's own hacking tools which are typically used, with the permission of a client, to look for vulnerabilities in an IT system. The stolen computer espionage kit targets myriad different vulnerabilities in popular software products. It is not yet clear exactly which systems may be affected. There is no evidence yet that FireEye’s hacking tools have been used or that client data was exfiltrated.
It remains to be seen whether hackers could leverage FireEye's hacking tools in order to attack high-profile risky targets.
FireEye, one of the largest cybersecurity companies in the United States, said on Tuesday that is has been hacked, possibly by a government, leading to the theft of an arsenal of internal hacking tools typically reserved to privately test the cyber defenses of their own clients.