Fortiguard Labs

Latest News

signalreport-logo Threat Signal Report

Microsoft Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)
Feb 16, 2024

What is the Vulnerability? Microsoft disclosed a critical security flaw in the Exchange Server. Tracked as CVE-2024-21410, the issue has been described as a privilege escalation vulnerability. This security flaw can let remote...

outbreakalert-logo Outbreak Alert

Outbreak Alert- Annual Report 2023
Feb 14, 2024

The FortiGuard Labs published a total of 38 Outbreak Alerts in the year 2023 comprising of 23 Significant Vulnerabilities, 8 Targeted Attack Campaigns, 4 OT/IoT Threats and 3 Malware related Threats. Read the full Annual Report to review the...

outbreakalert-logo Outbreak Alert

Ivanti Connect Secure and Policy Secure Attack
Feb 13, 2024

Widespread exploitation of zero-day vulnerabilities affecting Ivanti Connect Secure and Policy Secure gateways underway.

signalreport-logo Threat Signal Report

Atlassian Confluence Remote Code Execution (CVE-2023-22527)
Feb 01, 2024

What is the Vulnerability? On Jan 16 2024, Atlassian released an advisory for a template injection vulnerability on Confluence Data Center and Server. That can allow an unauthenticated attacker to remotely execute malicious code on...

outbreakalert-logo Outbreak Alert

Androxgh0st Malware Attack
Jan 17, 2024

FortiGuard Labs continue to observe widespread activity of Androxgh0st Malware in the wild exploiting multiple vulnerabilities, specifically targeting- the PHPUnit (CVE-2017-9841), Laravel Framework (CVE-2018-15133) and Apache Web Server...

outbreakalert-logo Outbreak Alert

Adobe ColdFusion Access Control Bypass Attack
Jan 16, 2024

FortiGuards labs observed extremely widespread exploitation attempts relating to security bypass vulnerabilities in Adobe ColdFusion. Successful exploitation could result in access of the ColdFusion Administrator endpoints.

Certifications

  • av comparatives logo
  • common criteria logo
  • nss labs logo
  • vb logo
  • mitre logo