Fortiguard Labs
Latest News
Threat Signal Report
F5 BIG-IP Configuration Utility Authentication Bypass (CVE-2023-46747)
Nov 09, 2023The vulnerability allows an unauthenticated attacker to exploit an authentication bypass vulnerability in F5 BIG-IP system. The exploit requires a network access through the management port to execute arbitrary system commands. F5 has warned...
Threat Signal Report
Atlassian Confluence Unauthorized Admin Account (CVE-2023-22515)
Nov 08, 2023The vulnerability attack is targeting an authentication bypass flaw in Atlassian Confluence Server and Confluence Data Center. The vulnerability is due to insufficient validation of user-supplied inputs. A successful exploitation may create an...
Outbreak Alert
Apache ActiveMQ Ransomware Attack
Nov 06, 2023Ransomware attackers are targeting servers running outdated and vulnerable versions of Apache ActiveMQ by exploiting a recently fixed vulnerability (CVE-2023-46604).
Outbreak Alert
Citrix Bleed Attack
Nov 02, 2023CVE-2023-4966 is being widely exploited, with multiple threat actors, including ransomware groups, targeting internet-accessible NetScaler ADC and Gateway instances. After exploiting CVE-2023-4966, the attackers may engage in network...
Publications
[BruCON 2023] The Mobile Malware Maze
Oct 24, 2023In this keynote presentation, we will delve into the fascinating evolution of mobile malware over the past 15 years.Exploring the realms of Symbian OS and Java ME, we will showcase early instances of mobile malware and their impact. With the...
Outbreak Alert
Cisco IOS XE Web UI Attack
Oct 23, 2023Active exploitation of a previously unknown vulnerabilities in the Web User Interface (Web UI) of Cisco IOS XE software when exposed to the internet or untrusted networks. According to open source articles, thousands of vulnerable devices have...
Services
-
Network
-
Application
-
Files and Endpoint
-
Security Operations
Select one for more details:
-
Anti-recon and Exploit
-
Botnet Domain Reputation DB
-
Data Loss Prevention
-
Indicators of Compromise
-
Intrusion Protection
-
IP Reputation/Anti-Botnet
-
Internet Services
-
Secure DNS
-
Application Control
-
Web Application Security (FADC)
-
Client Application Firewall
-
Web Application Security (FWB)
-
Operational Technology Security Service
-
IOT Application
-
Web Filtering