Results for APT Campaign

Threat Research

Russian Army Exhibition Decoy Leads to New BISKVIT Malware

A few days ago, the FortiGuard Labs team found a malicious PPSX file exploiting CVE-2017-0199 that had been crafted for Russian speakers.

By Jasper Manuel and Rommel JovenAugust 20, 2018

Threat Research

Hussarini – Targeted Cyber Attack in the Philippines

FortiGuard Labs spotted a malicious document with the politically themed file name “Draft PH-US Dialogue on Cyber Security.doc”. This document takes advantage of the vulnerability CVE-2017-11882. Upon successful exploitation, it drops a malware in the victim’s %temp% directory.

Threat Research

Rehashed RAT Used in APT Campaign Against Vietnamese Organizations

Early last week, FortiGuard Labs came across several malicious documents that exploit the vulnerability CVE-2012-0158. To evade suspicion from the victim, these RTF files drop decoy documents containing politically themed texts about a variety of Vietnamese government-related information.

By Jasper Manuel, Artem SemenchenkoSeptember 05, 2017