Fake Indian Income Tax Calculator Delivers xRAT Variant

A FortiGuard Labs Breaking Threat Report Tax-themed phishing and malware attacks rise during the tax filing season. FortiGuard Labs recently came upon an interesting Excel file claiming to provide an income tax calculator that purports to be from India’s Income Tax Department. It’s not. Instead, it’s a malicious file containing Continue Reading

FortiGuard Labs Security Researcher Discovers Multiple Critical Vulnerabilities in Adobe Photoshop

This past May I discovered and reported multiple critical zero-day vulnerabilities in Adobe Photoshop CC 2019 to the software developer, Adobe Inc. Last Tuesday (Aug 13, 2019), Adobe released several security patches to fix those issues as part of their Patch Tuesday Initiative. These vulnerabilities are identified as CVE-2019-7990, CVE-2019-7991, Continue Reading

The Bi-Directional Cloud Highway: Critical Insights into Today’s Cloud Infrastructures

The development of the cloud over the last 15 years is one of the most significant convergences of computing and communications technologies in history. It provides unprecedented agility and scalability for organizations, immediate access to information and transactions for individuals and has transformed our global economy similar to smartphones and Continue Reading

Are Progressive Web Apps The Future of The Web?

Progressive Web Apps, or PWAs, may sound like some techy fringe movement that’s only supported/adopted by a small minority. And in many ways, that’s exactly what they are. But what you really need to know about PWAs is that they’re: Based on a model that turns conventional practice on its Continue Reading

New DNS Options for SIP trunks and much more in Update 3 Alpha!

Posted on: August 9th, 2019 To finish our stream of midsummer updates with a bang, Update 3 Alpha has just been released and… it’s not to be missed! Included among the numerous fixes, updates and improvements are the new built-in DNS and reconnect connectivity controls, just-released Android and iOS apps, Continue Reading

Threat Report: The Necessity of Cyber Hygiene

This is a summary of an article written for Canadian Security by Fortinet’s Global Security Strategist, Derek Manky. The entire article can be accessed here. Fortinet regularly releases global Threat Landscape Reports, which take stock of billions of live threat events, collected from millions of devices and analyzed by our FortiGuard Continue Reading

EasyApache 4 Aug 7 Release | cPanel Newsroom

We are happy to announce that cPanel, L.L.C. has released an update for EasyApache 4! Take a look at some highlights below, and then join us on Slack, Discord, or Reddit to talk about this update and much more. 2019-8-7 php-cli EA-8537: Fix php version detection when cwd is a symlink. mod_ruid2 ZC-5378: Do Continue Reading

Leveraging AI to Win the Cybercrime Arms Race

This is a summary of an article written for SC Magazine by Fortinet’s Global Security Strategist, Derek Manky. The entire article can be accessed here. Cybercriminals and cybersecurity professionals are caught in a perpetual game of one-upmanship when it comes to developing and deploying tools to either defend digital resources Continue Reading

New Ursnif Variant Spreading by Word Document

Breaking FortiGuard Labs Threat Research  NOTE: This threat is actively spreading. During my analysis, which started with just a few samples, the volume of captured samples and the number of triggers this new variant set off in our global network of sensors kept growing. Because of this, we highly recommend Continue Reading

Tricky Chinese-Targeted Trojan Bypasses Authentication

A FortiGuard Labs Threat Analysis Report Introduction FortiGuard Labs uncovered a new campaign targeted at Chinese-speakers using malware that bypasses normal authentication by exploiting known WinRAR file (cve-2018-20250) and RTF file (cve-2017-11882) vulnerabilities. This attack uses a watering hole attack strategy to target Chinese-speaking users by delivering malware through a Continue Reading

>