FireEye Inc (NASDAQ:FEYE), the leader in stopping today’s advanced cyber attacks, today released a new Threat Intelligence report titled “HAMMERTOSS: Stealthy Tactics Define a Russian Cyber Threat Group.” The report analyzes the functionality and obfuscation tactics of an advanced piece of malware employed by the likely Russian government-backed Advanced Persistent Threat (APT) group APT29.
Operating in its current form since at least 2014, APT29 has demonstrated very strong capabilities to adapt to, and obfuscate their activities from, network defense measures – including aggressively monitoring network defenders and/or forensic investigators and attempting to subvert them. Their discipline in operational security sets them apart even from other Russian APT groups FireEye tracks.
“The novel approach APT29 takes to carry out its attacks and maintain their persistence in networks represents a level of difficulty that security professionals could see trickle down into their own network security operations,” said Laura Galante, director, threat intelligence at FireEye. “As we continue to track APT29, we will be able to bring more intelligence to light that will help our customers improve their defenses against advanced attacks.”
APT29’s HAMMERTOSS is comprised of multiple malware tactics in order to achieve its unique obfuscation goals. HAMMERTOSS follows a step-by-step retrieval of commands via common web services that would typically evade initial detection, including:
- Beaconing each day to a different, algorithmically-matched Twitter handle for links and hashtags with commands;
- Following social media links to sites like GitHub that host images with commands hidden within them using a practice known as steganography; and
- Executing commands and extracting data from the victims’ machines before uploading them to cloud storage services. (Original Source)
Shares of FireEye closed yesterday at $45.69. FEYE has a 1-year high of $55.33 and a 1-year low of $24.81. The stock’s 50-day moving average is $49.62 and its 200-day moving average is $43.29.
On the ratings front, FireEye has been the subject of a number of recent research reports. In a report released today, Oppenheimer analyst Shaul Eyal upgraded FEYE to Buy, with a price target of $58, which implies an upside of 26.9% from current levels. Separately, on July 15, Citigroup’s Walter Pritchard maintained a Hold rating on the stock .
According to TipRanks.com, which ranks over 7,500 financial analysts and bloggers to gauge the performance of their past recommendations, Shaul Eyal and Walter Pritchard have a total average return of 20.1% and 13.9% respectively. Eyal has a success rate of 73.6% and is ranked #19 out of 3718 analysts, while Pritchard has a success rate of 70.4% and is ranked #270.
The street is mostly Neutral on FEYE stock. Out of 13 analysts who cover the stock, 7 suggest a Hold rating and 6 recommend to Buy the stock. The 12-month average price target assigned to the stock is $45.67, which represents a slight downside potential from current levels.
FireEye Inc provides cybersecurity solution for detecting, preventing and resolving cyber-attacks that evade legacy signature-based security products. Its solutions include traditional and next-generation firewalls, IPS, anti-virus, and gateways.