Cyber security company FireEye recently disclosed an incident that has been reported to have led to the inadvertent disclosure of varied internally developed offensive safety tools (OSTs) which were used across FireEye red-team engagements.

Some of the tools seem to be based on well-identified offensive frameworks such as Cobalt Strike. That is even obvious in the naming convention found in the insurance designated by FireEye.

The usage of Cobalt Hit beacons is popular among crimson groups and adversaries. In 2020, Cisco Talos launched a research paper detailing the massive amount protection for the Cobalt Hit framework. We’ve concluded the coverage continues to be applicable and will detect FireEye red group beacons along with other activity reliably.

Read More >>