Another Local Privilege Escalation (LPE) Vulnerability Using Process Creation Impersonation

Introduction Over the past few months, FortiGuard Labs has been working closely with the Microsoft Security Response Centre (MSRC) to address multiple local privilege escalation (LPE) vulnerabilities that we discovered on the Windows platform. One of the most notable LPE vulnerabilities we reported to MSRC was found on the Windows Continue Reading

Undocumented Excel Variable Used in Malicious Spam Run Targeting Japanese Users

Over the course of the past few months, the FortiGuard SE group has been utilizing and enhancing the Fortinet machine learning systems to detect emerging threats. Recently, one of those machines detected an anomalous spike that led us to discover a malware campaign that had been using social engineering techniques Continue Reading

Snap startup time improvements

Several months ago, we shared an article titled I have a need, a need for snap that detailed the application performance results of snaps compared to their classic repo counterparts. We tested GIMP and VLC on both Ubuntu and Fedora, with some rather interesting findings. The one aspect of the Continue Reading

Zimbra’s Wiki – now 17x Faster!

Greetings, Friends. Over the last few months we received reports that our Tech Center was suffering from occasional timeouts or long waiting periods. Not good! We know that our tech articles are critical for your Zimbra deployments and/or configurations, so I have good news for you today. But first, a Continue Reading

Living Securely in a Digital World

Over the past several months the news has been full of reports about cybercriminals using malware to shut down devices or networks, steal data, or hold it for ransom. During the second quarter of 2017, over 184 billion total exploits were documented, coming from nearly 6,300 unique exploits. This is an Continue Reading

Zero Patch IoT Environment

Over the last few months or years I have reported vulnerabilities on several IoT devices. None have been patched so far, and I think it is time to discuss the situation openly. One of the issues I have faced several times is the zero-security-culture phenomenon. Some of those IoT companies were typically very small Continue Reading

Group Replication support SAVEPOINT

Group Replication has been around as GA for some months now. Nonetheless, work continues and now we are happy to let you know that you can now use transaction savepoints when write-set extraction is enabled. This enhancement was released as in MySQL 8.0.1. The SAVEPOINT statement sets a named transaction Continue Reading

PrestaShop 1.7.1.0 is now available

Optimization, performance and functionality are the major themes in this release A few months ago we introduced you to PrestaShop 1.7, a major release that featured big improvements to the user experience. Today, we’re very happy to announce the availability of PrestaShop 1.7.1.0! Thanks to the feedback from our user Continue Reading

FortiGuard Labs Discovers Multiple Vulnerabilities in Microsoft Word

Over the last few months FortiGuard Labs discovered and reported multiple vulnerabilities found in different versions of Microsoft Word. These vulnerabilities were patched in the January (MS17-002) and March (MS17-014) security updates. These patches are rated as important, and as always, we suggest users update Microsoft Office as soon as possible. Continue Reading

Linux Gafgyt.B!tr Exploits Netcore Vulnerability

Over the past few months we have seen a lot of malware activity around the Netcore vulnerability, so we decided to take closer look at its exploitation. The following screen shot shows attack traffic captured through Wireshark. Figure 1 Figure 2 shows a quick enumeration of the sample. (There are Continue Reading

>