Threat Research

Defending Against the New VPNFilter Botnet

A newly reported botnet named VPNFilter targets SCADA/ICS environments by monitoring MODBUS SCADA protocols and exfiltrating website credentials.

By FortiGuard SE TeamMay 23, 2018

Threat Research

I’ve Got Trickbot Under My Screen

FortiGuard Labs spotted yet another new module being distributed by the very active Trickbot banking malware using a technique called “Hidden VNC” (virtual network computer) to stealthily take control of a victim’s machine.

Threat Research

Buffer Overflow Attack Targeting Microsoft IIS 6.0 Returns

FortiGuard Labs has been documenting a spike in new attacks targeting a buffer overflow vulnerability in the WebDAV service in Microsoft IIS 6.0, peaking on Apr 13, 2018 when we logged over 4 million triggers.

By Bing LiuMay 23, 2018

Fortinet Fabric Connectors: Enabling Deep Fabric Integration With Third Party Solutions

New Fabric Connectors tie traditionally disparate security solutions into a single, integrated system to automate security workflows, tighten SOC environments, correlate threat feeds, and seamlessly enforce consistent security across the distributed security infrastructure, including multi-cloud environments.

By Rajoo NagarMay 22, 2018

Business and Technology

Realizing the Full Potential of Secure SD-WAN

The decision to deploy an SD-WAN may be straightforward, extracting the full range of benefits requires an in-depth evaluation of a variety of other supporting components. If ignored, it is all too easy for the enticements of speed and agility to overshadow some of the more fundamental needs of a corporate environment, such as security.

By John MaddisonMay 21, 2018

Threat Research

An Analysis of Microsoft Edge Chakra NewScObjectNoCtor Array Type Confusion (CVE-2018-0838)

CVE-2018-0838 is one of the ‘type confusion’ bugs in the Microsoft Edge Chakra Engine that was fixed by Microsoft three months ago. This bug causes memory corruption and can possibly be exploited to execute arbitrary code when a vulnerable system browses a malicious web page via Microsoft Edge.

By Dehui YinMay 18, 2018

Threat Research

A Wicked Family of Bots

As we continue to keep track of the latest IoT botnets, the FortiGuard Labs team has seen an increasing number of Mirai variants, thanks to the source code being made public two years ago. Since then, threat actors have been adding their own flavours to the original recipe.

Business and Technology

Building an Adaptive and Secure SD-WAN Framework

SD-WAN experts and industry analysts point out that an optimal enterprise SD-WAN solution needs to not only support WAN performance requirements, but also address security priorities.

By Shalini SundaramMay 17, 2018

Threat Research | Industry Trends

Fortinet Threat Report Reveals an Evolution of Malware to Exploit Cryptocurrencies

Fortinet FortiGuard Labs today unveiled the findings of its latest Global Threat Landscape Report. The research reveals an evolution of malware to exploit cryptocurrencies.

By FortiGuard SE TeamMay 16, 2018

Business and Technology | Partners

Amazon GuardDuty and Automating Cloud Security with the Security Fabric

Fortinet is excited to announce the integration of the Fortinet Security Fabric with Amazon GuardDuty to automate remediation and threat intelligence in Amazon Web Services. This integration accelerates time-to-protection in the cloud by using dynamic FortiGate firewall rules to block new detected threats.

By Warren WuMay 15, 2018