During the past two months, FortiGuard Labs has been monitoring an onslaught of updates from GandCrab as a result of their agile development method. Some of these updates included major changes, while some only had minimal. In the midst of this, a series of tit-for-tat exchanges were witnessed by many researchers between the ransomware authors and the South Korean-based security company Ahnlab over the vaccine tools that the latter released in mid-July.
With the help of FortiGuard’s in-house Threat Intelligence Platform (Kadena), FortiGuard Labs discovered a series of attacks targeted at service centers in Russia. These service centers provide maintenance and support for a variety of electronic goods.
Fortinet just announced the availability of a major release (v6.0) of our FortiMail Secure Email Gateway that includes advanced features specifically designed to address the growing volume of increasingly sophisticated email-based attacks, including social-engineering-based attacks.
GandCrab is one of the most talked about ransomware families this year primarily due to its increasing distribution volume, as we described in our previous article. At the end of last month, FortiGuard Labs discovered a new spam wave from the same campaign delivering the latest version, GandCrab v3.
Cybercriminals use email to trick users into providing login credentials or initiating fraudulent transactions, as well as to unknowingly install malware, ransomware, and other malicious payloads. These are some of the top email-based cyberattacks that your customers need be aware of.
The challenge is that most all email security vendors say the same thing: “99.9% catch rate, no false positives, easy to manage” and so forth, which is why Fortinet is firmly committed to regular participation in independent testing. Consider, for example, the Advanced Threat Defense certification testing conducted by ICSA Labs.
In general, if a cybercriminal is able to successfully launch an attack at an owner-operated IT infrastructure, they can also launch one at a cloud service provider. In fact, public cloud services have become highly attractive targets for cybercriminals. For them, breaking into a cloud service is like merging onto a superhighway that can deliver their little bundles of evil far and wide, potentially impacting hundreds or thousands of organizations with a single strike.
Organizations have the option of adding the first cloud-based sandbox product in AWS marketplace, FortiSandbox, to their cloud security infrastructure, allowing businesses to operate a complete security practice entirely in the cloud. Fortinet’s Security Fabric solutions for the cloud offer the ability to leverage security controls that are delivered, updated, and managed entirely through the cloud environment.
Fortinet is proud to be a Gold Sponsor of the 6th annual AWS re:Invent conference, being held at the Venetian Hotel in Las Vegas between November 27th and December 1st. re:Invent is the largest gathering of members of the global cloud community in the world, bringing together over 40,000 attendees from over 80 different nations attending over 1,000 different technical sessions, keynote addresses, labs, and special events over the course of the conference. Fortinet will be showcasing our latest cloud-based solutions, including the Fortinet...