High Performance Network Security, Enterprise and Data-Center Firewall

High Performance Network Security, Enterprise and Data-Center Firewall

EXD: An attack surface for Microsoft Office

by RSS Wayne Chin Yick Low  |  April 01, 2016  |  Category: Security Research
Fortinet has discovered a potential attack surface for Microsoft office via EXD file. After a malformed or specifically crafted EXD file was placed in an expected location, it could trigger a remote code execution when a document with ActiveX is open...
Read More >>

KimcilWare Ransomware: How to Decrypt Encrypted Files and who is Behind It

by RSS Tien Phan  |  April 01, 2016  |  Category: Security Research
A new ransomware targeting Magento Websites was recently discovered by the Malware Hunter Team and Lawrence Abrams. This post intends to share additional findings of the FortiGuard Lion Team, specifically on three areas: 1) KimcilWare’s backdoo...
Read More >>

Internet In Danger: Analysis of ISC Bind Patch (part 2)

by RSS Amir Zali  |  April 01, 2016  |  Category: Security Research
In this second part article, we analyze two recent vulnerabilities in ISC BIND identified as CVE-2016-1286 and CVE-2016-2088. Based on advisories, these bugs can be triggered using a malformed DNAME record (CVE-2016-1286) or an OPT COOKIE records (CV...
Read More >>

Stored XSS Vulnerabilites on Foscam

by RSS Ruchna Nigam  |  March 31, 2016  |  Category: Security Research
In case you missed it, Fortinet recently introduced the Fortinet Network Security Academy (FNSA) with the objective of providing individuals with advanced cybersecurity skills in order to address the industry’s current skills shortage. To high...
Read More >>

Patented Firmware Repels Large-Scale DDoS attacks on DNS Services

by RSS Hemant Jain  |  March 30, 2016  |  Category: Security Research
DNS-Related DDoS Attacks Are on the Rise Domain Name System (DNS)-related distributed denial of service (DDoS) attacks are on the rise because hacktivists and cyberterrorists are finding it easy to use botnets to stage large volumetric reflection an...
Read More >>

Internet In Danger: Analysis of ISC Bind Patch (part 1)

by RSS Dehui Yin  |  March 29, 2016  |  Category: Security Research
The Internet Systems Consortium just released a couple of days ago a new patch (version 9.10.3-P4) to fix some issues in the most popular DNS server software in the world. The release note is available at https://kb.isc.org/article/AA-01363/81/...
Read More >>

Unique Perspectives on the Threat landscape of Today’s Healthcare Networks

by RSS Ryan Edwards  |  March 29, 2016  |  Category: Industry Trends & News
A recently released executive level report by Fortinet included a brief overview of key findings resulting from Fortinet’s Cyber Threat Assessment Program (CTAP) running across a multitude of organizations nationwide for a period of four mont...
Read More >>

Insomni'hack 2016

by RSS Axelle Apvrille  |  March 25, 2016  |  Category: Industry Trends & News
You missed Insomni'hack? You shouldn't have: although there are now something like 700 attendees, it's still a friendly and well organized hacking conference with an interesting mix between wild hackers, CTOs, and CISOs (some being hacke...
Read More >>

What's cooking? Dridex’s New and Undiscovered Recipes

by RSS Wayne Chin Yick Low  |  March 23, 2016  |  Category: Security Research
Because of the recent outbreak of the Locky ransomware, Dridex has become synonymous with the distribution of ransomware more generally. However, Dridex is still taking good care of its notorious original business– banking Trojans. While p...
Read More >>

Cybersecurity Skills Shortage Is Not Just About Having the Right Products and Technology; It’s About Solving the People Challenge

by RSS Stephan Tallent  |  March 22, 2016  |  Category: Industry Trends & News
It’s evident that demand for trained and experienced cybersecurity professionals far exceeds supply. With 46% of organizations now claiming that they have a problematic shortage of cybersecurity skills, significantly up from last year at just 2...
Read More >>

Unseen Dangers—Obfuscation Tools & Cybercrime

by RSS Derek Manky  |  March 21, 2016  |  Category: Industry Trends & News
Ever since the arrival of advanced persistent threats, obfuscation technologies have existed to help cybercriminals evade security detection and tracing. It’s an ongoing evolution of technology on the bad guys’ end. It really started wit...
Read More >>

Nemucod Adds Ransomware Routine

by RSS Roland Dela Paz  |  March 16, 2016  |  Category: Security Research
It came to our attention that a new, rather peculiar version of Nemucod has been recently landing on users. Nemucod is a well-known JavaScript malware family that arrives via spam email and downloads additional malware to PCs. Most recently, Nemucod...
Read More >>

Understanding Consumer Behaviour from Wi-fi Insights

by RSS Fortinet  |  March 14, 2016  |  Category: Industry Trends & News
We have all embraced online searching and shopping. The days of driving around town to compare costs or referring to the most current newspaper advertisement for a bargain have long gone. Today’s consumer reaches out via the Internet on a varie...
Read More >>

Security is at the Top of Healthcare Providers’ “Must-Do” Lists—Or It Should Be

by RSS Ryan Witt  |  March 10, 2016  |  Category: Industry Trends & News
“Houston, we have a problem.” This is not news to healthcare organizations, whether they are in Houston, Boston, St. Louis or San Francisco. 2015 was a banner year in healthcare, for all the wrong reasons. The increasing number of attacks...
Read More >>

FortiGuard Labs on the Web

Monthly Archives

search results hidden links