Fortinet Threat Research.
Fortinet Threat Research Blog Official blog feed of Fortinet
- Fortinet Contributes to Major Cybercrime Operation Arrestson December 3, 2024 at 2:00 pm
Fortinet contributes to major INTERPOL and AFRIPOL cybercrime operations arrests of members of cybercrime groups operating across Africa. These individuals specialize in ransomware, digital extortion, online scams, and Business Email Compromise (BEC) attacks.
- SmokeLoader Attack Targets Companies in Taiwanon December 2, 2024 at 2:00 pm
FortiGuard Labs has uncovered an attack targeting companies in Taiwan with SmokeLoader, which performs its attack with plugins this time. Learn more.
- Ransomware Roundup – Interlockon November 29, 2024 at 2:00 pm
Interlock is a recent ransomware variant that has victimized organizations in the United States and Italy, but may have hit other countries. The ransomware affects not only Windows, but also the FreeBSD platform. Read more.
- Advanced Cyberthreats Targeting Holiday Shopperson November 26, 2024 at 2:00 pm
Black Friday and Holiday Shopping Threats Targeting Shoppers on the Darknet. Learn more.
- Threat Predictions for 2025: Get Ready for Bigger, Bolder Attackson November 21, 2024 at 2:00 pm
From more sophisticated playbooks to a rise in cloud attacks, cybercriminals are upping the ante to execute more targeted and harmful activities. Learn more.
- New Campaign Uses Remcos RAT to Exploit Victimson November 8, 2024 at 2:00 pm
See how threat actors have abused Remcos to collect sensitive information from victims and remotely control their computers to perform further malicious acts.
- Threat Campaign Spreads Winos4.0 Through Game Applicationon November 6, 2024 at 2:00 pm
FortiGuard Labs reveals a threat actor spreads Winos4.0, infiltrating gaming apps and targeting the education sector. Learn more.
- Burning Zero Days: Suspected Nation-State Adversary Targets Ivanti CSAon October 11, 2024 at 3:00 pm
A case where an advanced adversary was observed exploiting three vulnerabilities affecting the Ivanti Cloud Services Appliance (CSA). This incident is a prime example of how threat actors chain zero-day vulnerabilities to gain initial access to a victim’s network. Learn more.
- Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401on September 5, 2024 at 1:00 pm
When the GeoServer vulnerability CVE-2024-36401 emerged, the FortiGuard Labs gathered related intelligence. This blog highlights the threat actors and how they exploit and use the vulnerability.
- Emansrepo Stealer: Multi-Vector Attack Chainson September 3, 2024 at 1:00 pm
FortiGuard Labs has uncovered a fresh threat – Emansrepo stealer, which is distributed via multiple attack chains for months. Learn more.