FortiGuard Labs Threat Research
Fortinet Identifies Malicious Packages in the Wild: Insights and Trends from November 2024 Onward
FortiGuard Labs analyzes malicious software packages detected from November 2024 to the present and has identified various techniques used to exploit system vulnerabilities. Learn more.
FortiGuard Labs Threat Research
Analyzing ELF/Sshdinjector.A!tr with a Human and Artificial Analyst
FortiGuard Labs reverse engineers a malware’s binaries to look into what the malware is actually doing.
FortiGuard Labs Threat Research
Deep Dive Into a Linux Rootkit Malware
An in-depth analysis of how a remote attacker deployed a rootkit and a user-space binary file by executing a shell script.
FortiGuard Labs Threat Research
SmokeLoader Attack Targets Companies in Taiwan
FortiGuard Labs has uncovered an attack targeting companies in Taiwan with SmokeLoader, which performs its attack with plugins this time. Learn more.
FortiGuard Labs Threat Research
A Deep Dive into a New ValleyRAT Campaign Targeting Chinese Speakers
A technical analysis of the ongoing ValleyRat multi-stage malware campaign's diverse techniques and characteristics.
FortiGuard Labs Threat Research
Moobot Strikes Again - Targeting Cacti And RealTek Vulnerabilities
FortiGuard Labs examined several attacks targeting Cacti and Realtek vulnerabilities. Understand the payloads of these attacks and their resulting behavior of spreading ShellBot and Moobot malware.
FortiGuard Labs Threat Research
Reduce, Reuse, Recycle: Bad Actors Practicing the Three Rs
Cybercriminals are big proponents of getting the most out of their resources. Read how FortiGuard Labs researchers investigated how they're retrofitting code to enable more successful criminal outcomes.
FortiGuard Labs Threat Research
More Supply Chain Attacks via New Malicious Python Packages in PyPi
Read how the FortiGuard Labs team discovered another 0-day attack in the PyPI packages (Python Package Index) by the malware authors 'Portgual' and 'Brazil'.
FortiGuard Labs Contributes to INTERPOL Multinational Cybercrime Suppression Operation in Africa
Recently, FortiGuard Labs provided evidentiary support to INTERPOL and African Member countries as part of the Africa Cyber Surge Operation to help detect, investigate, and disrupt cybercrime. Learn more.
FortiGuard Labs Threat Research
Excel Document Delivers Multiple Malware by Exploiting CVE-2017-11882 – Part II
FortiGuard Labs discovered an Excel document, which exploits CVE-2017-11882 to execute malicious code to deliver and execute malware. Part two of this series reveals more about the Redline payload and the information it steals from victims.
