This article relies too much on references to primary sources. Please improve this by adding secondary or tertiary sources. (March 2022) (Learn how and when to remove this template message)
Mandiant, Inc.
FormerlyRed Cliff Consulting (2004–2006)
TypePublic company
IndustryInformation security
Founded2004; 18 years ago (2004)
FounderKevin Mandia
HeadquartersReston, Virginia, U.S.
Key people
Kevin Mandia, CEO
RevenueIncrease US$400 million (2021)
Owner
Number of employees
1,000–2,000 (2021)
Websitemandiant.com

Mandiant is a publicly traded[1] American cybersecurity firm. It rose to prominence in February 2013 when it released a report directly implicating China in cyber espionage. In December 2013, Mandiant was acquired by FireEye for $1 billion, who eventually sold the FireEye product line, name, and its employees to Symphony Technology Group for $1.2 billion in June 2021. In March 2022, Google announced that it would acquire the company for $5.4 billion and integrate it into its Google Cloud division.

History

Kevin Mandia, a former United States Air Force officer who serves as the company's chief executive officer, founded Mandiant as Red Cliff Consulting in 2004 before rebranding to its current name in 2006.[2] In 2011, Mandiant received funding from Kleiner Perkins Caufield & Byers to expand its staff and grow its business-to-business operations, providing incident response and general security consulting along with incident management products to major global organizations, governments, and Fortune 100 companies.[citation needed] Its 2012 revenues were over $100 million, up 76% from 2011.[3]

Mandiant was awarded both the 2012 and 2013 SC Award for exemplary professional leadership in information technology security.[4] It is also the creator of OpenIOC (Open Indicators of Compromise), an extensible XML schema for the description of technical characteristics that identify threats, security hackers' methodologies, and evidence of compromise. In February 2013, Mandiant released a report documenting evidence of cyber attacks by the People's Liberation Army,[5] specifically Pudong-based PLA Unit 61398,[6] targeting at least 141 organizations in the United States and other English-speaking countries extending as far back as 2006.[7] In the report, Mandiant referred to the espionage unit as "APT1".[8]

In December 2013, Mandiant was acquired by FireEye for $1 billion.[9][10]

In October 2020, the company announced Mandiant Advantage, a subscription-based SaaS platform designed to augment and automate security response teams which combined the threat intelligence gathered by Mandiant and data from cyber incident response engagements;[11] in December, the company investigated a major supply chain attack by SolarWinds on U.S. government infrastructure.[12]

In May 2021, Mandiant was contracted to assist in the response to a ransomware incident impacting Colonial Pipeline, a fuel pipeline operator that supplies close to half of the gasoline, diesel, and other fuels to the East Coast of the U.S.[13][14] In June, the company was spun off of FireEye as part of the latters's acqusition by Symphony Technology Group.[15][16] In August, the company acquired Intrigue, which specialized in surface management.[17] In March 2022, it was announced that the company would be acquired by Google for $5.4 billion and subsequently integrated into the Google Cloud division.[18]

References

  1. ^ "FireEye Announces Plans to Relaunch as Mandiant, Inc. at Cyber Defense Summit 2021 and Trade on Nasdaq as MNDT". Fireeye. September 22, 2021. Archived from the original on September 23, 2021. Retrieved March 10, 2022.
  2. ^ "MANDIANT, A New Name for a Fast Growing Company; Red Cliff Consulting LLC Rebrands as Firm Offers Expanded Services, Education and Software Tools". Business Wire. February 14, 2006. Archived from the original on April 2, 2015. Retrieved January 5, 2016.
  3. ^ Brad Stone and Michael Riley (February 7, 2013). "Mandiant, the Go-To Security Firm for Cyber-Espionage Attacks". Bloomberg Business. Retrieved January 5, 2016.
  4. ^ "SC Magazine Names Mandiant the 2013 Professional Award Winner for Best Security Company". Mandiant. March 5, 2013. Archived from the original on June 21, 2013. Retrieved January 5, 2016.
  5. ^ "APT1: Exposing One of China's Cyber Espionage Units". Mandiant. February 18, 2013. Archived from the original on October 5, 2021. Retrieved March 15, 2017.
  6. ^ Xu, Weiwei (February 20, 2013). "China denies hacking claims". Morning Whistle. Archived from the original on June 29, 2013. Retrieved January 5, 2016.
  7. ^ Sanger, David E.; Barboza, David; Perlroth, Nicole (February 18, 2013). "Chinese Army Unit Is Seen as Tied to Hacking Against U.S.". The New York Times. Archived from the original on February 19, 2013. Retrieved January 5, 2016.
  8. ^ Wan, Ellen; Nakashima (February 19, 2013). "Report ties cyberattacks on U.S. computers to Chinese military". The Washington Post. Archived from the original on February 19, 2013. Retrieved January 5, 2016.
  9. ^ "FireEye Announces Acquisition of Mandiant". FireEye. 2014. Archived from the original on April 17, 2017. Retrieved January 5, 2016.
  10. ^ Perlroth, Nicole; Sanger, David (January 2, 2014). "FireEye Computer Security Firm Acquires Mandiant". The New York Times. Archived from the original on January 4, 2014. Retrieved September 18, 2018.
  11. ^ Osborne, Charlie (October 6, 2020). "FireEye's Mandiant debuts new SaaS threat intelligence suite". ZDNet. Archived from the original on October 9, 2020. Retrieved October 7, 2020.
  12. ^ "Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor". Mandiant. December 13, 2020. Archived from the original on October 12, 2021. Retrieved June 5, 2021.
  13. ^ Turton, William; Mehrotra, Kartikay (June 4, 2021). "Hackers Breached Colonial Pipeline Using Compromised Password". Bloomberg Business. Archived from the original on June 4, 2021. Retrieved June 5, 2021.
  14. ^ Nakashima, Ellen; Torbati, Yeganeh; Englund, Will (May 8, 2021). "Ransomware attack leads to shutdown of major U.S. pipeline system". The Washington Post. Archived from the original on May 8, 2021. Retrieved May 12, 2021.
  15. ^ Duckett, Chris (January 18, 2022). "McAfee Enterprise and FireEye are now called Trellix". ZDNet. Archived from the original on January 19, 2021. Retrieved February 8, 2022.
  16. ^ "FireEye Announces Sale of FireEye Products Business to Symphony Technology Group for $1.2 Billion". Mandiant. June 2, 2021. Archived from the original on October 5, 2021. Retrieved June 10, 2021.
  17. ^ "Mandiant Adds Attack Surface Management to its SaaS Portfolio with the Acquisition of Intrigue". Mandiant. August 10, 2021. Archived from the original on November 1, 2021. Retrieved March 10, 2022.
  18. ^ Shead, Sam (March 8, 2022). "Google to acquire cybersecurity firm Mandiant for $5.4 billion". CNBC. Archived from the original on March 8, 2022. Retrieved March 8, 2022.