CISOs Must Incorporate Employee Training When Developing Security Strategy

CISOs are facing a perfect storm when it comes to securing their networks. Cyber attacks are becoming increasingly sophisticated just as corporate networks are becoming more distributed and complex – all while security talent becomes harder to find and security strategy best practices evolve. In the midst of this turmoil, Continue Reading

Free Rugby World Cup Streaming Service Can Be a Foul Play

The internet is a great source for information and entertainment. But it is also rife with fraud schemes, scams, misinformation, and other tactics to exploit your personal and financial data. Cybercriminals often focus on high-profile global events to find target victims in hopes of stealing their financial data. These criminals Continue Reading

FortiGuard Labs Weekly Threat Update – Week of 27 September 2019

Each week, FortiGuard Labs publishes a Threat Brief to subscribers that profile notable hot topics and threats that were discovered or discussed during the week. Here is a recap of what we are covering in this week’s Threat Brief: Malware and Zero Day Attacks We breakdown our analysis of a Continue Reading

VMware ESXi Command Injection Vulnerability

Overview VMware is the market leader in cloud infrastructure software, with over 41% market share. The VMware ESXi solution is a bare metal hypervisor that installs directly onto your physical server and partitions it into multiple virtual machines. The FortiGuard Labs team recently discovered a command injection vulnerability in VMware ESXi. This Continue Reading

TrickBot or Treat – Knocking on the Door and Trying to Enter

The FortiGuard SE Team discovered a particularly interesting targeted attack towards the end of August in Virus Total. The attack targeted a supplier for a distribution/logistics provider to a nation state. The email contained an attachment that appeared to have been sent by a company that manufactures and distributes electrical Continue Reading

Healthcare Cyberattack Trends in 2019

This is a summary of an article written for Inside Digital Health by Fortinet’s National Healthcare Lead, Sonia Arista. The article appeared on August 22, 2019, and can be accessed here. During the first five months of 2019, healthcare organizations were under nearly constant cyberattack attempts ranging from targeted phishing Continue Reading

Why CISOs Must Use Automation and AI to Combat Resource Shortages

Today, a major cybersecurity challenge is the accelerated pace of operations and threats. The velocity, variety and sophistication of threats, and the complexity of today’s networks have outpaced the effectiveness of traditional perimeter-based defenses. Data breaches are now considered inevitable and the practical reality is that it is simply impossible Continue Reading

New NetWire RAT Variant Being Spread Via Phishing

A FortiGuard Labs Threat Analysis Background NetWire is a Remote Access Trojan (RAT) malware that has been widely used for many years. Recently, FortiGuard Labs noticed a malware spreading via phishing email, and during the analysis on it, we discovered that it was a new variant of NetWire RAT. In Continue Reading

Nemty Ransomware 1.0: A Threat in its Early Stage

FortiGuard Labs was investigating the Sodinokibi ransomware family, when we came across the newly discovered Nemty Ransomware. Interestingly, as we analyzed this new malware, we also encountered an artifact embedded in its binary that we were very much familiar with since it was also used by the GandCrab ransomware before Continue Reading

WordPress (Core) Stored XSS Vulnerability

FortiGuard Labs Breaking Threat Research Overview WordPress is the world’s most popular Content Management System (CMS). It has 60.4% of the global CMS market share, which is far higher than the second-place Joomla!, which only has 5.2% of the market share. As a result, over a third of all of Continue Reading

>