Results for malware

Threat Research

Tricky Chinese-Targeted Trojan Bypasses Authentication

FortiGuard Labs uncovered a new campaign targeted at Chinese-speakers using malware that bypasses normal authentication by exploiting known WinRAR file (cve-2018-20250) and RTF file (cve-2017-11882) vulnerabilities. Read this analysis to learn more.

By Yueh-Ting ChenAugust 07, 2019

Threat Research

The Malicious Use of Pastebin

The FortiGuard Labs threat research team has noticed for some time that Pastebin and similar services are being used by malware authors, sometimes to evade detection or to obscure their purposes. Find out more.

By Amir ZaliAugust 02, 2019

Threat Research

A Deep Dive Into IcedID Malware: Part II - Analysis of the Core IcedID Payload (Parent Process)

Learn more about the core IcedID payload, a banking trojan which performs web injection on browsers and acts as proxy to inspect and manipulate traffic. This is part two of a three part series.

By Kai LuJuly 16, 2019

Threat Research

A Deep Dive Into IcedID Malware: Part I - Unpacking, Hooking and Process Injection

Learn more about IcedID, a banking trojan which performs web injection on browsers and acts as proxy to inspect and manipulate traffic. This is part one of a three part series.

By Kai LuJuly 09, 2019

Threat Research

Analysis of a New HawkEye Variant

FortiGuard Labs recently identified a new variant of HawkEye malware being spread by a phishing email. Read more about the analysis here.

By Xiaopeng ZhangJune 18, 2019

Industry Trends

Cybercriminals Opt for Open Source Tools

By deploying an integrated security fabric that spans today’s distributed networks, IT security teams can stay ahead of the threat curve to better detect and respond to threats happening anywhere across the entire attack surface.

By FortinetJune 10, 2019

Threat Research

A Deep Dive into the Emotet Malware

FortiGuard Labs has been tracking Emotet since it was first discovered. This blog provides a deep analysis of a new Emotet sample found in early May.

By Kai LuJune 06, 2019

Threat Research

New Rocke Variant Ready to Box Any Mining Challengers

FortiGuard Labs has been monitoring a Linux coin mining campaign from “Rocke” – a malware threat group specializing in cryptomining. Learn more about the general behavior of the malware as well as new features we have documented.

By Joie SalvioMay 28, 2019

Threat Research

Key Takeaways from Our Latest Global Threat Landscape Report

Fortinet announced the findings of the latest quarterly Global Threat Landscape Report. The research reveals that cybercriminals continue to evolve the sophistication of their attack methods, from tailored ransomware and custom coding for some attacks, to utilizing pre-installed tools or established infrastructure to maximize efficiency for their opportunities.

By FortiGuard SE TeamMay 21, 2019

Threat Research

A Closer Look at Satan Ransomware’s Propagation Techniques

Satan ransomware first appeared in early 2017, and since then threat actors have been constantly improving the malware to infect its victims more effectively and to maximize its profits. Learn more about how this malware finds new targets to attack.