Threat Signal

The Threat Signal created by the FortiGuard Labs is intended to provide you with insight on emerging issues that are trending within the cyber threat landscape. The Threat Signal will provide concise technical details about the issue, mitigation recommendations and a perspective from the FortiGuard Labs team in an FAQ style format.

Whether it’s significant vulnerability disclosures including high profile zero days, coordinated announcements with Cyber Threat Alliance partners, malware of significance, or any threat making the news cycle, FortiGuard Threat Signals are there for you.

FortiGuard Labs is aware of recent uptick in malicious spam that delivers the Squirrelwaffle Loader malware. Some public r...

Sep 21, 2021 TLP Level: Threat Level: MED ID: 53
Update 9/17 - An IPS signature has been released in definitions (18.160) as "MS.Exchange.Server.SecurityToken.Authenticati...

Aug 30, 2021 TLP Level: Threat Level: MED ID: 48
FortiGuard Labs is aware of a report that the Magniber ransomware is delivered to the victims in South Korea by exploiting...

Aug 15, 2021 TLP Level: Threat Level: MED ID: 45
FortiGuard Labs is aware of a report that a new ransomware, "Grief," was recently rebranded from DoppelPaymer ransomware. ...

Aug 11, 2021 TLP Level: Threat Level: MED ID: 44
FortiGuard Labs is aware that a brand new ransomware "Blackmatter" was found in the wild. Blackmatter is yet another Ranso...

Aug 11, 2021 TLP Level: Threat Level: MED ID: 43
FortiGuard Labs is aware of reports of the disclosure of operational documents and procedures relating to the Conti ransom...

Aug 06, 2021 TLP Level: Threat Level: MED ID: 40
FortiGuard Labs is aware of a recent report that the telecommunications industry in the Southeast Asian region was the tar...

Aug 05, 2021 TLP Level: Threat Level: MED ID: 39
FortiGuard Labs is aware of a report that FatalRAT is being distributed through forums and Telegram channels. FatalRAT is ...

Aug 03, 2021 TLP Level: Threat Level: MED ID: 37
FortiGuard Labs is aware of a report that a VBA-based Remote Access Trojan (RAT) was distributed in a fake statement docum...

Aug 02, 2021 TLP Level: Threat Level: MED ID: 36
FortiGuard Labs is aware of a report that an advanced and persistent threat actor "Praying Mantis" targeted several high-p...

Aug 01, 2021 TLP Level: Threat Level: MED ID: 40
FortiGuard Labs is aware of multiple reports that the Iranian train system was attacked using a previously unknown wiper m...

Jul 30, 2021 TLP Level: Threat Level: MED ID: 35
FortiGuard Labs is aware of a new variant of the LockBit ransomware, specifically version 2.0. LockBit 2.0 is ransomware a...

Jul 28, 2021 TLP Level: Threat Level: MED ID: 34
On July 20th, 2021, Carnegie Mellon University's CERT Coordination Center publicly disclosed information on an un-patched ...

Jul 21, 2021 TLP Level: Threat Level: MED ID: 31
On July 19th, a joint cybersecurity advisory was issued by the United States Federal Bureau of Investigation (FBI) and the...

Jul 20, 2021 TLP Level: Threat Level: MED ID: 30
Today, the United States Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (...

Jul 20, 2021 TLP Level: Threat Level: MED ID: 29