Fortinet Blog | News and Threat Research

Last week the security world was abuzz with news of a new attack vector for mobile attacks. The malware was sent to the accounts of Tibetan human rights advocates and activists from the hacked account of one of the activists re...

Insomni’hack 2013 took place last week at Geneva and I had the opportunity to attend. Insomni’hack DAY 1 consisted of one day workshops on subjects ranging from “Linux exploitation” to “How to ...

Android/Claco.A!tr is a new mobile malware that has been in the news recently for it’s unique ability to infect PCs. Even though we’ve seen an attack vector of this kind on the Symbian OS before (SymbOS/CardTrap), ...

I recently came across an Android malware sample that does your usual data stealing i.e. leaking data from the victim’s phone such as the phone number, contact information etc. Most vendors name this sample Uranico (Andr...

Zitmo Attack Scenario - taken from my slides at ShmooCon, January 2011 Zitmo’s attack scenario, taken from CheckPoint’s and VerSafe’s white paper (Dec 2012) Recently, Check Point and Versafe published a wh...

Our Hashdays Android challenge is over. The challenge turned out to be quite difficult (told you ;), we know that several among you worked on it, and two hackers found the correct solution. Congratulations! * 1st - Joerie de G...

Feel free to browse through our Zitmo timeline. Please note that variant naming depends on many factors including but not limited to chronology. Hence variant letters (.A) don’t always reflect the order of appearance in t...

I enjoyed the Hashdays conference very much. For those who missed my talk, read this blog post. And now, more about other talks. Christien Rioux (@dildog) opened the conference with an interesting and unusual keynote about how...

I am back from Hashdays. For the (very) unfortunate ones ;) who missed my talk, you can download my slides from here, and also view my demo there. Click to download the slides Hashdays video of my demo Shortly, I think the...

As promised, Fortinet’s Android challenge begins. hashdays-challenge.apk sha1: 0b12fd28a2d912762d37379e69189cd427eb8bbc sha256: 8acfac2d1646b7689e09aab629a58ba66029b295068ca76cdaccbdc92b4e5ea9 (it’s useless to ...

In a previous post, I mentioned the new scheme used by the author of Android/Fakemart to make money. Basically, the trick consisted in infecting phones to silently and automatically register to play an online quizz and then st...

Another Android malware is currently in the wild in France, as we have recently discovered. This malware poses as a Flash Player installer and steals your incoming SMS messages by forwarding them to a remote server. We have na...

While going through our regular (and never-ending) supply of malicious Android samples, we came across an interesting variant a couple of days back. Like most Android Trojans these days, the piece of malware benefits by sending...

Recently, a new trojan named Android/Fakemartcaught our attention as it is operating in France, where our EMEA labs are located. The malware poses as a Winamp Pro application or a Black Market application (Black Market is an a...

Organizations these days have their hands full with security and management challenges brought about by the Bring Your Own Device phenomenon. But why stop at devices? Good question. In fact, the same culture of innovation and ...