Seeking to streamline how CISOs consume content to remain abreast of the latest changes in the threat landscape, the latest developments in security technologies, and new business strategies, Fortinet built The CISO Collective.
Fortinet FortiGuard Labs today unveiled the findings of its latest Global Threat Landscape Report. The research reveals an evolution of malware to exploit cryptocurrencies.
In a study conducted by Forrester Consulting on behalf of Fortinet this past January 2018, 429 global decision-makers across a wide variety of industries, responsible for the security of their organization’s critical infrastructure, IP level protection, IoT, and/or SCADA, were asked about this convergence process and the security challenges they are facing.
The convergence that is enabling new agile business models is also introducing significant new risks, many of which are catching organizations entirely unprepared. For example, nearly 90% of organizations have now experienced a security breach within their Supervisory Control and Data Acquisition and Industrial Control Systems (SCADA/ICS) architectures, with more than half of those breaches occurring in just the last 12 months.
According to recent FortiGuard Labs research that looked at technology and threat trends among educational institutions in the US, both K-12 and higher education institutions are consistently operating at the cutting edge of technology use. However, this growth in the use of technology also creates new security challenges that need to be addressed.
The explosion of new applications and connected IoT devices has created a wealth of data that, when analyzed, provides businesses with critical insights into consumer behaviors and interests, allowing them to create more customized offerings. Combined with the accelerated adoption of solutions across IaaS, PaaS and SaaS, the cloud is here to stay. However, this also means that cybercriminals will continue to attack the cloud.
Organizations today face an unprecedented volume of increasingly sophisticated threats as they conduct online operations. As the potential attack surface expands and attack volumes increase, it is imperative to track the most popular and successful strategies of cybercriminals to stay ahead of their malicious intentions.
At the end of 2017, the FortiGuard Labs team discovered a heap overflow vulnerability in Microsoft Windows JET Database Engine and reported it to Microsoft following Fortinet’s responsible disclosure process. On April 10, 2018, Microsoft released an advisory that contains the fix for this vulnerability and identifies it as CVE-2018-1003.
A couple of days ago, a friend of mine, James, was the victim of a scam and gave away his credit card number and CVC. The interesting part is that he is not the "standard" victim, but a very security aware person: he's a researcher on the security of embedded systems, a CTF player, and he cares for his privacy. Nevertheless, he fell into the trap of a phishing scam, and the story tends to prove that we will all likely fall for one of these one day. The only difference between James and the ordinary online shopper is that, the next day, he was uneasy with the situation and decided to investigate more.