Weekly Threat Briefs

FortiGuard Labs uses its industry leading global infrastructure of threat sensors, honeypots, and collectors to provide you with the largest source of data of any pure play network security vendor. Data is collected from all of these sources on a continual basis and analyzed by Fortinet’s world-wide team of analysts to provide you with a weekly recap of the incidents and threats you care the most about.

On this page you will find an archive of our weekly Threat Intelligence Briefs, as well as the ability to sign up to receive these briefs every Friday. Join the thousands of other security-minded professionals who receive these weekly briefs!

This week the US Department of Homeland Security and the FBI identified a group of IP addresses associated with a remote administration tool (RAT) used by the North Korean government---commonly known as FALLCHILL.  According to third party reporting, HIDDEN COBRA actors have likely been using FALLCH...

Nov 16, 2017
Cryptocurrencies have become a trendy topic over the past year. BitCoin, the first decentralized cryptocurrency, has reached a market exchange rate of nearly $7500 per unit. However, BitCoin is not the only cryptocurrency available on the market. Multiple alternatives have surfaced in the last few y...

Nov 09, 2017
After a few months of apparent inactivity, the Sage ransomware family resurfaced this past week with a new variant. While the encryption routine did not change (meaning it still belongs to the v2.2 release that first appeared in March 2017) this new campaign sports new evasion and obfuscation techni...

Nov 02, 2017
This week the ransomware called "Bad-Rabbit" was spotted for the first time, initially attacking users in Russia and Ukraine, but has been spotted spreading from there.

Oct 26, 2017
This week researchers from the University of Leuven, Belgium, released a paper and a working proof of concept for an exploit of the Wi-Fi Protected Access II protocol. WPA2 is the standard encryption protocol in modern Wi-Fi communication, meaning that this vulnerability (called KRACK - Key Reinstal...

Oct 19, 2017