Another Local Privilege Escalation (LPE) Vulnerability Using Process Creation Impersonation

Introduction Over the past few months, FortiGuard Labs has been working closely with the Microsoft Security Response Centre (MSRC) to address multiple local privilege escalation (LPE) vulnerabilities that we discovered on the Windows platform. One of the most notable LPE vulnerabilities we reported to MSRC was found on the Windows Continue Reading

FortiGuard Labs Security Researcher Discovers Multiple Critical Vulnerabilities in Adobe Photoshop

This past May I discovered and reported multiple critical zero-day vulnerabilities in Adobe Photoshop CC 2019 to the software developer, Adobe Inc. Last Tuesday (Aug 13, 2019), Adobe released several security patches to fix those issues as part of their Patch Tuesday Initiative. These vulnerabilities are identified as CVE-2019-7990, CVE-2019-7991, Continue Reading

Undocumented Excel Variable Used in Malicious Spam Run Targeting Japanese Users

Over the course of the past few months, the FortiGuard SE group has been utilizing and enhancing the Fortinet machine learning systems to detect emerging threats. Recently, one of those machines detected an anomalous spike that led us to discover a malware campaign that had been using social engineering techniques Continue Reading

Critical Strategies for Staying Ahead of Emerging Cyberthreats

Over the past couple of decades, changes in the threat landscape have driven changes in how we design, implement, and manage security. Organizations have spent the last two decades updating their security gear to keep up with the latest threats and attack vectors. In the late 1990s, the creation of Continue Reading

Minimizing Cyber Risks as Healthcare Providers Increase Technology Use

The healthcare sector has undergone dramatic changes in the past several years, primarily spurred by the adoption of new medical technology. Beginning with the adoption of electronic health records (EHRs) and continuing on into the increased use of medical applications, online patient portals, connected devices, and wearables, the healthcare sector Continue Reading

Fall 2017 Product Update Webinar: Simplifying Scaling and Global Delivery

October 4, 2017 by Holly Regan The past quarter at Wowza Media SystemsTM, we’ve had a lot of exciting new updates and additions to our product portfolio. In our Fall 2017 Product Update Webinar, we’ll provide an overview of the latest and greatest Wowza capabilities. If you missed the live Continue Reading

Rewriting IDAPython Script objc2_xrefs_helper.py for Hopper

Security researchers have identified more and more Mac OS malware attacks over the past two years. In June 2017, Rommel Joven and Wayne Chin Yick Low from Fortinet’s Fortiguard Labs found and analyzed a new ransomware targeted at Mac OS.  Most malware for Mac OS was developed in the Objective-C Continue Reading

Living Securely in a Digital World

Over the past several months the news has been full of reports about cybercriminals using malware to shut down devices or networks, steal data, or hold it for ransom. During the second quarter of 2017, over 184 billion total exploits were documented, coming from nearly 6,300 unique exploits. This is an Continue Reading

Join the Slack #livestreaming Community

August 8, 2017 by Wowza Media Systems Over the past year, Wowza has introduced the #livestreaming community on Slack to the world. With almost 1,500 members and counting, the #livestreaming community was designed to be a real-time hub for all things live-streaming—where streaming professionals, developers and change-makers share expertise, resources and feedback. The #livestreaming community Continue Reading

>