FortiGuard Labs Threat Research

FortiGuard Labs Threat Research

Supply Chain Attack by New Malicious Python Package, “web3-essential”

FortiGuard Labs team discovers another 0-day attack in a malicious PyPI package called “web3-essential”. See how this malware avoids suspicion and other observations.

By Jin Lee February 02, 2023

FortiGuard Labs Threat Research

Ransomware Roundup – Trigona Ransomware

In this week's Ransomware Roundup, FortiGuardLabs covers Trigona ransomware along with protection recommendations. Read the blog to find out more.

By Shunichi Imano February 02, 2023

FortiGuard Labs Threat Research

Analyzing Malware Code that Cryptojacks System to Mine for Monero Crypto

FortiGuard Labs analyzes malicious code found in captured excel documents that cryptojacks a victim’s system to mine for Monero cryptocurrency. See how the malicious software is delivered, executed, and the techniques it uses to gain persistence on a device.

By Xiaopeng Zhang January 31, 2023

FortiGuard Labs Threat Research

FortiGuard Outbreak Alerts - 2022 Annual Report

Given the volume of active threats today’s SOC teams require automation and dynamic services to succeed. FortiGuard Labs' Outbreak Alerts provide a unique analysis of the threat landscape. Read our 2022 Outbreak Alert Report and overview blog.

By Carl Windsor January 26, 2023

FortiGuard Labs Threat Research

The Year of the Wiper

FortiGuard Labs has been tracking wiper malware since the start of the 2022 Russia-Ukraine conflict. Read our latest blog to find out recent updates about the trends in wiper malware and how attack scenarios have changed.

By Geri Revay January 24, 2023

FortiGuard Labs Threat Research

QR Code Phishing Attempts to Steal Credentials from Chinese Language Users

FortiGuard Labs recently discovered a phishing campaign using a variety of QR codes to target Chinese language users. It aims to steal credentials by luring users into entering their data into a phishing website owned by the threat actor. Read our blog to learn more:

By James Slaughter January 23, 2023

FortiGuard Labs Threat Research

Ransomware Roundup – Playing Whack-a-Mole with New CrySIS/Dharma Variants

In this week's Ransomware Roundup, FortiGuard Labs covers variants of the CrySIS/Dharma ransomware family along with protection recommendations. Read our blog to find out more.

By James Slaughter January 19, 2023

FortiGuard Labs Threat Research

Supply Chain Attack Using Identical PyPI Packages, “colorslib”, “httpslib”, and “libhttps”

The FortiGuard Labs team discovered an attack embedded in three PyPI packages called ‘colorslib’, ‘httpslib’, and “libhttps”. Read our blog to learn more.

By Jin Lee January 14, 2023

FortiGuard Labs Threat Research

2022 IoT Threat Review

FortiGuard Labs continuously monitors the IoT botnet threat landscape for new and emerging campaigns. Read our blog with insights into malware campaigns that have been actively targeting IoT devices for infection.

By Eduardo Altares, Joie Salvio and Roy Tay January 13, 2023

FortiGuard Labs Threat Research

Ransomware Roundup – Monti, BlackHunt, and Putin Ransomware

In this week's ransomware roundup, FortiGuard Labs covers the Monti, BlackHunt, and Putin ransomware along with protection recommendations. Read our blog to find out more.

By Shunichi Imano and James Slaughter January 05, 2023