![]() | |
Formerly | Red Cliff Consulting (2004–2006) |
---|---|
Company type | Subsidiary |
Nasdaq: MNDT | |
Industry | Information security |
Founded | 2004; 21 years ago (2004) |
Founder | Kevin Mandia |
Headquarters | Reston, Virginia, U.S. |
Key people | Kevin Mandia (CEO) |
Revenue | ![]() |
Number of employees | 2,335 (December 2021) |
Parent | |
Website | mandiant |
Footnotes / references [1] |
Mandiant, Inc. is an Americancybersecurity firm and a subsidiary ofGoogle. Mandiant received attention in February 2013 when it released a report directly implicatingChina incyber espionage. In December 2013, Mandiant was acquired byFireEye for $1 billion, who eventually sold the FireEye product line, name, and its employees toSymphony Technology Group for $1.2 billion in June 2021.
In March 2022, Google announced that it would acquire the company for $5.4 billion and integrate it into itsGoogle Cloud division, with the firm becoming fully incorporated in September 2022.[2][3]
Kevin Mandia, a formerUnited States Air Force officer who serves as the company'schief executive officer, founded Mandiant as Red Cliff Consulting in 2004 beforerebranding to its current name in 2006.[4][5] In 2011, Mandiant received funding fromKleiner Perkins Caufield & Byers andOne Equity Partners to expand its staff and grow itsbusiness-to-business operations, providing incident response and general security consulting along with incident management products to major global organizations, governments, andFortune 100 companies.[6][additional citation(s) needed]
Mandiant is the creator of OpenIOC (OpenIndicators of Compromise), an extensibleXML schema for the description of technical characteristics that identifythreats,security hackers' methodologies, and evidence of compromise. In 2012, its revenues were over $100 million, up 76% from 2011.[7]
In February 2013, Mandiant released a report documenting evidence ofcyber attacks by thePeople's Liberation Army,[8] specificallyPudong-basedPLA Unit 61398,[9] targeting at least 141 organizations in theUnited States and otherEnglish-speaking countries extending as far back as 2006.[10] In the report, Mandiant referred to the espionage unit as "APT1".[11]
In December 2013, Mandiant was acquired byFireEye for $1 billion.[12][13] In October 2020, the company announced Mandiant Advantage, a subscription-basedSaaS platform designed to augment and automate security response teams which combined the threat intelligence gathered by Mandiant and data from cyber incident response engagements;[14] in December, the company investigated a majorsupply chain attack throughSolarWinds software in U.S. government infrastructure.[15][16][17]
In May 2021, Mandiant was contracted to assist in the response to a ransomware incident impactingColonial Pipeline, a fuel pipeline operator that supplies close to half of the gasoline, diesel, and other fuels to theEast Coast of the U.S.[18][19] In June, the company was spun off FireEye as part of the latter's acquisition bySymphony Technology Group.[20][21] In August, the company acquired Intrigue, which specialized in surface management.[22]
In 2022,Axios reported that Mandiant reporters identified a pro-China disinformation campaign targeting American voters ahead of the2022 midterm elections.[23]
On May 4, 2023, Mandiant announced its integration for MISP, Splunk SIEM and SOAR.[24]
In March 2022, it was announced that the company would be acquired byGoogle for $5.4 billion and subsequently integrated into theGoogle Cloud division.[2] Following the announcement,Fortune reported that while the deal could face antitrust scrutiny, the acquisition "could help increase competition" rather than harm it.[25]
In April 2022, it was reported that theDepartment of Justice (DOJ) Antitrust Division was probing the deal for potential violations of federal antitrust law.[26] However, Mandiant revealed in July 2022 that the DOJ granted the acquisition approval.[27] Following a review over potential competition concerns, theAustralian Competition & Consumer Commission (ACCC) announced it would not oppose the deal.[28]
On September 12, 2022, the deal closed and integration between Mandiant and Google Cloud began. Following the acquisition, Mandiant was allowed to maintain its brand as a subsidiary of Google Cloud.[29][30]
Since 2014, every year around autumn the company organizes a well-knowncybersecurity reverse engineering challenge called Flare-On, with participants from around the world.[31]