Weekly Threat Briefs

FortiGuard Labs uses its industry leading global infrastructure of threat sensors, honeypots, and collectors to provide you with the largest source of data of any pure play network security vendor. Data is collected from all of these sources on a continual basis and analyzed by Fortinet’s world-wide team of analysts to provide you with a weekly recap of the incidents and threats you care the most about.

On this page you will find an archive of our weekly Threat Intelligence Briefs, as well as the ability to sign up to receive these briefs every Friday. Join the thousands of other security-minded professionals who receive these weekly briefs!

On September 7, 2021, Microsoft disclosed an unpatched remote code execution vulnerability in Microsoft MSHTML affecting multiple Microsoft Windows platforms. MSHTML, also referred to as Trident, is the Microsoft legacy browser engine for Internet Explorer, specific to Microsoft Windows...

Sep 17, 2021
Malicious Actor Discloses FortiGate SSL-VPN Credentials – Fortinet has become aware that a malicious actor has recently disclosed SSL-VPN access information to 87,000 FortiGate SSL-VPN devices. These credentials were obtained from systems that remained unpatched against FG-IR-18-384 /...

Sep 10, 2021
A year of suffering best describes Microsoft Exchange Server in 2021. The year started off with ProxyLogon, a zero-day vulnerability (CVE-2021-26855) that was abused, along with three other unpatched vulnerabilities, by a nation-state actor dubbed HAFNIUM. Then ProxyOracle was disclosed by...

Sep 03, 2021
FortiGuard Labs has just released our 2021 mid-year Global Threat Landscape Report. The first six months of 2021 saw a significant increase in the volume and sophistication of attacks targeting individuals, organizations, and increasingly critical infrastructure. Here is a quick review of the...

Aug 27, 2021
FortiGuard Labs is aware that a brand-new ransomware "BlackMatter" was found in the wild. BlackMatter is yet another Ransomware-as-a-Service, where the ransomware group provides tools such as ransomware, payment sites, and operating manuals to its members and affiliates who then actually perform...

Aug 20, 2021