Fortinet

Microsoft released a patch for CVE-2022-21907 as part of Microsoft’s Patch Tuesday. In this blog, FortiGuard Labs researchers analyze the cause of the vulnerability and how attackers can exploit it.

FortiGuard Labs identified a new campaign operated by threat actor Moses Staff. Read our blog to learn the TTPs used and about a new backdoor used to download files, execute payloads, and exfiltrate data from target networks.

FortiGuard Labs researchers discovered an Excel file that uses NFT related information as a lure to download and install BitRAT malware. Read our blog to learn how the attack works.

Fortinet security researchers discovered and reported zero-day vulnerabilities in Adobe Illustrator & Photoshop. This Patch Tuesday Adobe released several security patches and fixes. Read more.

FortiGuard Labs discovered a phishing email used to deliver a variant of the STRRAT malware as an attachment. This blog deconstructs the phishing email and its malicious payload.

Threat actors continue to maximize pandemic related social engineering lures. Read about a COVID Omicron variant related lure FortiGuard Labs discovered used to distribute RedLine Stealer malware.

FortiGuard Labs analyzes vulnerabilities in Microsoft Active-Directory (CVE-2021-42278 and CVE-2021-42287). Analysis shows that by combining them, it is possible for a regular user to easily impersonate a domain admin. Learn more about the exploitation of these vulnerabilities.

FortiGuard Labs provides important updates about the Apache Log4j vulnerabilities, including details, campaigns associated with Log4j, and an alleged “wormable” Mirai malware variant. Read to learn more.