Threat Research

Threat Research

Fortinet Discovers New Android Apps that Mine the Unminable

Cryptocurrencies don't all work the same way. Some are minable, some aren't. For example, Ripple (XRP), Cardano (ADA) and Tether (USDT) aren't minable.

By Axelle ApvrilleOctober 11, 2018

Threat Research

Bindweed: Digging Down to a Root of a Hidden Phishing Network

In one of our previous investigations into attacks on the service centers, FortiGuard Labs ran across a list of domains used by the criminals. During our subsequent monitoring process, we spotted a phishing HTML page on one of those webservers that was posing as a Dropbox login page.

Threat Research

The Sony Smart TV Exploit: An Inside View of Hijacking Your Living Room

More and more Smart TVs are connected to the Internet than ever before, with an estimated 760 million of them now connected globally. As new threats increasingly target IoT devices, such as Smart TVs, that include always-on connectivity and high-performance GPUs that can be hijacked for malicious purposes, FortiGuard Labs took the opportunity to look at the current security status of these devices.

By Tony LoiOctober 04, 2018

Industry Trends | Threat Research

Making Security Hygiene a Priority

To help mitigate the risk of a successful attack, agencies should maintain and consistently update their cybersecurity hygiene. The best practices listed above will help make effective security hygiene possible without compromising defenses against high-priority threats.

By Aamir LakhaniOctober 03, 2018

Threat Research

FakeSpy Comes Back. New Wave Hits Japan

FortiGuard Labs recently encountered malicious traffic traveling to a C2 server located in China. The connection was established by a domain using a name that closely resembled one of Japan’s most famous express post delivery services. Our analysis showed that the website making this connection is fake, and moreover, it is spreading an Android malware.

By Dario Durando, Evgeny AnaninOctober 02, 2018

Threat Research

VPNFilter Update – New Attack Modules Documented

This most current update, also posted by Cisco Talos through the Cyber Threat Alliance, identifies additional updates to the VPNFilter malware that have not been seen previously.

By FortiGuard SE TeamSeptember 26, 2018

Threat Research

Deep Analysis of a Driver-Based MITM Malware: iTranslator

The FortiGuard Labs research team recently captured a malware sample, an EXE file, which was signed by an invalid certificate. Once a victim opens the exe file, it installs two drivers to control the victim’s Windows system as well as monitors the Internet activities of the victim’s Web browser.

By Xiaopeng ZhangSeptember 21, 2018

Business and Technology | Threat Research

Cyber Threat Alliance Members Issue First Collaborative Report on Cryptomining

The CTA has just released a new joint analysis report on the growing threat of cryptomining, an activity that poses both short and long-term threats to individuals and enterprises. This report lays out the risk, its potential impacts, and the best practices organizations can employ to counter this rising menace.

By Anthony GiandomenicoSeptember 19, 2018

Threat Research

Beware of Emails Purporting to be from the IRS

FortiGuard Labs has come across a peculiar phishing campaign purporting to be from the United States Internal Revenue Service (IRS), which is titled “2018 UPDATE: NON RESIDENT ALIEN TAX WITHHOLDING.

By FortiGuard SE TeamSeptember 17, 2018

Threat Research

Results from the Third Annual “ETSI NFV Plugtest + OPNFV SFC/NSH” Event

For three years now, ETSI has conducted an NFV (Network Functions Virtualization) Plugtest event that provides an opportunity for vendors and open source communities to meet, collaborate, and assess the level of interoperability of their implementations and solutions, especially in multi-vendor environments.

By Nicolas ThomasSeptember 14, 2018