Mandiant

History

Kevin Mandia, a former United States Air Force officer who serves as the company's chief executive officer, founded Mandiant as Red Cliff Consulting in 2004 prior to rebranding in 2006. In 2011, Mandiant received funding from Kleiner Perkins Caufield & Byers to expand its staff and grow its business-to-business operations. Mandiant provides incident response and general security consulting along with incident management products to major global organizations, governments, and Fortune 100 companies. Its 2012 revenues were over $100 million, up 76% from 2011. The company was acquired by FireEye on December 30, 2013. Mandiant was awarded both the 2012 and 2013 SC Award for exemplary professional leadership in information-technology (IT) security. Mandiant is the creator of OpenIOC, an extensible XML schema for the description of technical characteristics that identify threats, attackers' methodologies, and evidence of compromise.

APT1 espionage report

On 18 February 2013, Mandiant released a report documenting evidence of cyber attacks by the People's Liberation Army (specifically Pudong District, Shanghai-based PLA Unit 61398) targeting at least 141 organizations in the United States and other English-speaking countries extending as far back as 2006. In the report, Mandiant refers to the espionage unit as APT1. The report states that it is likely that Unit 61398 is the source of the attacks. A video was uploaded to YouTube demonstrating one such intrusion by APT.