Results for python

Threat Research

Debugging PostScript with Ghostscript

PostScript is a simple interpretive programming language with powerful graphics capabilities that has been integrated into most of today’s modern printers. Over the last couple of years, the software has been targeted by attackers to carry out a number notorious attacks, including a campaign discovered by FortiGuard Labs last year that exploited the CVE-2015-2545 Encapsulated PostScript (EPS) vulnerability.

By Wayne Chin Yick LowJuly 26, 2018

Threat Research

Python-Based Malware Uses NSA Exploit to Propagate Monero (XMR) Miner

Recently, FortiGuard Labs uncovered a new python-based cryptocurrency mining malware that uses the ETERNALROMANCE exploit, that we have dubbed “PyRoMine.” In this article, I provide an analysis of this malware and show how it leverages the ETERNALROMANCE exploit to spread to vulnerable Windows machines.

By Jasper ManuelApril 24, 2018