FortiGuard Labs Threat Research
Threat Actors Exploit the Tensions Between Azerbaijan and Armenia
Threat actors are using geopolitical issues between Azerbaijan and Armenia to deliver stealth malware
FortiGuard Labs Threat Research
FortiGuard Labs Discovers Multiple Vulnerabilities in Microsoft Message Queuing Service
Get an overview of the attack surfaces of MSMQ, the approaches taken to tackle the challenges encountered during fuzzing, and additional details of the vulnerabilities. Learn more.
FortiGuard Labs Threat Research
Are Internet Macros Dead or Alive?
FortiGuard Labs highlights how threat actors are using macro-based Office documents to initiate attacks and distribute their payloads. Read into the details of the threat actors' activities.
FortiGuard Labs Threat Research
Leveraging Microsoft Office Documents to Deliver Agent Tesla and njRat
FortiGuard Labs discovered malicious Microsoft Office documents attempting to leverage legitimate websites to execute a shell script and drop malware variants of Agent Tesla and njRat. Read more for details.
FortiGuard Labs Threat Research
Microsoft Exchange 0-Day Vulnerability Updates
FortiGuard Labs is aware of reports that an unpatched Microsoft Exchange Remote Command Execution (RCE) vulnerability is being exploited in the wild. Learn what organizations need to know about these vulnerabilities.
FortiGuard Labs Threat Research
The Swan Song for Driver Signature Enforcement Tampering
FortiGuard Labs examines the state of Driver Signature Enforcement (DSE) tampering attacks given the increase in attacks leveraging this tampering method. Read more about how defenders can protect against these types of attacks.
FortiGuard Labs Threat Research
CVE-2022-30190: Microsoft Support Diagnostic Tool (MSDT) RCE Vulnerability “Follina”
FortiGuard Labs researchers provide an analysis of CVE-2022-30190: Microsoft Support Diagnostic Tool (MSDT) RCE vulnerability “Follina.” Read to learn more about this critical vulnerability and how to take corrective action until Microsoft releases a patch.
FortiGuard Labs Threat Research
Analysis of Microsoft CVE-2022-21907
Microsoft released a patch for CVE-2022-21907 as part of Microsoft’s Patch Tuesday. In this blog, FortiGuard Labs researchers analyze the cause of the vulnerability and how attackers can exploit it.
FortiGuard Labs Threat Research
The Curveball Vulnerability Research Analysis
The Microsoft Curveball Exploit is a vulnerability that allows malicious actors to spoof certificates. Learn how FortiClient can protect Fortinet customers.
FortiGuard Labs Threat Research
Addressing Microsoft’s January 2020 Security Update for CVE-2020-0601
Learn more about Microsoft’s January 2020 Security Update for CVE-2020-0601.
