Proactive, Responsible Disclosure Is One Crucial Way Fortinet Strengthens Customer Security
The cybersecurity industry continues to grow and mature. As a part of this process, we must collectively raise the topic of—and discuss the need for—ethical rules for handling the disclosure of vulnerabilities, especially given the many benefits of providing such intelligence in protecting customers against cyber adversaries.
FortiGuard Labs Threat Research
FortiGuard Labs Researcher Discovers Multiple Vulnerabilities in Multiple Autodesk Products
FortiGuard Labs discovered and reported vulnerabilities in Autodesk Design Review, Autodesk Subassembly Composer, Autodesk Moldflow Communicator, and Autodesk Dwg2Spd. The vendor released security patches that fixed these vulnerabilities. Read for more details.
Building Cyber Resilience for Your Operational Technology Network
As recent cyberattacks have demonstrated increased risk to both IT and OT environments, resilience readiness today has evolved. Read more.
FortiGuard Labs Threat Research
FortiGuard Labs Researcher Discovers 12 Zero-Day Vulnerabilities in Adobe InDesign
FortiGuard Labs has discovered and reported several zero-day vulnerabilities in Adobe InDesign to Adobe. On September 13, 2022, Adobe released security patches that fixed these vulnerabilities. Read for more details.
FortiGuard Labs Threat Research
More Path Filter Bypass Vulnerabilities on Java Open Source Projects
After performing a code audit on some popular Java open source projects, ApacheShiro and dotCMS, FortiGuard Labs found some interesting bypass vulnerabilities. Read our blog to learn more.
FortiGuard Labs Threat Research
Life After Death—SmokeLoader Continues to Haunt Using Old Vulnerabilities
FortiGuard Labs examines SmokeLoader, a malware variant that exploits CVE-2017-0199 and CVE-2017-11882 in its deployment chain. Read our analysis blog to learn about the latest sample.
FortiGuard Labs Threat Research
FortiGuard Labs Discovers Three Vulnerabilities in Siemens’ Teamcenter Solutions
FortiGuard Labs discovered and reported three zero-day vulnerabilities in Siemens JT2Go and Teamcenter Visualization. Siemens and Open Design Alliance released security patches that addressed these vulnerabilities. Learn more.
FortiGuard Labs Threat Research
Using EPSS to Predict Threats and Secure Your Network
In our latest blog, FortiGuard Labs reviews valuable tools to help understand what threats organizations might face next including the Common Vulnerability Scoring System (CVSS) and the Exploit Prediction Scoring System (EPSS). We also recap some of the unique benefits of each for better vulnerability prioritization.
FortiGuard Labs Threat Research
Analysis of Microsoft CVE-2022-21907
Microsoft released a patch for CVE-2022-21907 as part of Microsoft’s Patch Tuesday. In this blog, FortiGuard Labs researchers analyze the cause of the vulnerability and how attackers can exploit it.
FortiGuard Labs Threat Research
Mirai-based Botnet - Moobot Targets Hikvision Vulnerability
FortiGuard Labs analyzes how an attacker can leverage CVE-2021-36260 to create targets for Moobot which is a DDoS botnet based on Mirai. In this blog we explain how an attacker delivers this payload along with details of the botnet.
