Results for malware

Threat Research

Analysis of a New HawkEye Variant

FortiGuard Labs recently identified a new variant of HawkEye malware being spread by a phishing email. Read more about the analysis here.

By Xiaopeng ZhangJune 18, 2019

Industry Trends

Cybercriminals Opt for Open Source Tools

By deploying an integrated security fabric that spans today’s distributed networks, IT security teams can stay ahead of the threat curve to better detect and respond to threats happening anywhere across the entire attack surface.

By FortinetJune 10, 2019

Threat Research

A Deep Dive into the Emotet Malware

FortiGuard Labs has been tracking Emotet since it was first discovered. This blog provides a deep analysis of a new Emotet sample found in early May.

By Kai LuJune 06, 2019

Threat Research

New Rocke Variant Ready to Box Any Mining Challengers

FortiGuard Labs has been monitoring a Linux coin mining campaign from “Rocke” – a malware threat group specializing in cryptomining. Learn more about the general behavior of the malware as well as new features we have documented.

By Joie SalvioMay 28, 2019

Threat Research

Key Takeaways from Our Latest Global Threat Landscape Report

Fortinet announced the findings of the latest quarterly Global Threat Landscape Report. The research reveals that cybercriminals continue to evolve the sophistication of their attack methods, from tailored ransomware and custom coding for some attacks, to utilizing pre-installed tools or established infrastructure to maximize efficiency for their opportunities.

By FortiGuard SE TeamMay 21, 2019

Threat Research

A Closer Look at Satan Ransomware’s Propagation Techniques

Satan ransomware first appeared in early 2017, and since then threat actors have been constantly improving the malware to infect its victims more effectively and to maximize its profits. Learn more about how this malware finds new targets to attack.

Threat Research

How to Cost-Effectively Dynamically Analyze UEFI Malware

With the growing popularity of UEFI systems adversaries are starting to focus on exploiting this new attack surface. There is a pressing need for security researchers to be able to handle this threat. In this blog post, we examine how.

By Minh TranMay 14, 2019

Threat Research

New Spam Attack Targets Romanian Corporation

The FortiGuard SE team has discovered an ongoing malicious spam campaign over the past few weeks. It uses a combination of a variant of the Fareit/Pony downloader together with the Formbook infostealer malware. Read this analysis report of the spam campaign.

By FortiGuard SE TeamMay 08, 2019

Threat Research

Predator the Thief: New Routes of Delivery

FortiGuard Labs discovered a running campaign against Russian-speakers using a new version of “Predator the Thief” stealer malware. The same actor was using one set of dummy files to deliver the stealer via different forms of phishing, including Zipped files, fake documents, fake pdfs, and the WinRAR exploit described in CVE-2018-20250.

Threat Research

Looking Into Anatova Ransomware

Anatova is a fairly new ransomware. It avoids infecting computers that are used in analysis and research labs. It systematically avoids infecting files and folders that are important to the stability of the computer system it is infecting.

By Raul AlvarezApril 11, 2019