Weekly Threat Briefs

FortiGuard Labs uses its industry leading global infrastructure of threat sensors, honeypots, and collectors to provide you with the largest source of data of any pure play network security vendor. Data is collected from all of these sources on a continual basis and analyzed by Fortinet’s world-wide team of analysts to provide you with a weekly recap of the incidents and threats you care the most about.

On this page you will find an archive of our weekly Threat Intelligence Briefs, as well as the ability to sign up to receive these briefs every Friday. Join the thousands of other security-minded professionals who receive these weekly briefs!

DDoSing for ransom! Memcached is a popular open-source distributed memory caching system. It is often used to speed up dynamic database-driven websites by caching data and objects in RAM to reduce the number of times an external data source must be read. Memcached is installed by default on many Lin...

Mar 09, 2018
Following the recent Adobe Flash 0-day (CVE-2017-4878) vulnerability, which was attributed to APT 37 and North Korea by various external researchers, comes light of a new malicious spam campaign utilizing this exploit vector by unknown actors. The malicious emails are utilizing social engineering te...

Mar 02, 2018
On February 20th we released the Q4 2017 Fortinet Threat Landscape Report. The findings in this report represent the collective intelligence of FortiGuard Labs, drawn from Fortinet's vast array of network devices and sensors within production environments. This comprises billions of threat events an...

Feb 23, 2018
HIDDEN COBRA strikes again. On February 13th, The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) released joint malware analysis reports identifying malware variants attributed to the North Korean government threat group known as HIDDEN COBRA. The FBI reported hi...

Feb 16, 2018
On February 6th, Adobe released a patch for a critical Flash Player zero-day vulnerability that is being exploited in the wild. According to Adobe, the zero-day is exploiting the vulnerability CVE-2018-4878, a critical remote code execution bug. Successful exploitation could allow the attacker to ta...

Feb 09, 2018