High Performance Network Security, Enterprise and Data-Center Firewall

High Performance Network Security, Enterprise and Data-Center Firewall

by RSS Sousan Yazdi  |  January 16, 2014  |  Category: Security Research
Sousan Yazdi, Junior Antivirus Analyst Margarette Joven, Antivirus Manager Special Technical Contribution by Liang Huang, Senior Antivirus Analyst CryptoLocker is the name of a ransomware trojan family that emerged late last year. This malware is...
by RSS Axelle Apvrille  |  December 16, 2013  |  Category: Security Research
Recently, I ran into a malicious sample (Android/Mseg.A!tr.spy) which was causing Baksmali to stall. This does not happen that often. I contacted Jesus Freke, the author of smali/baksmali, who quickly fixed the issue. A deeper look in the sample tur...
by RSS Ruchna Nigam  |  January 14, 2013  |  Category: Security Research
I recently came across an Android malware sample that does your usual data stealing i.e. leaking data from the victim's phone such as the phone number, contact information etc. Most vendors name this sample Uranico (Android.Uranico, Trojan:Android/U...
by RSS Axelle Apvrille  |  October 29, 2012  |  Category: Security Research
As promised, Fortinet's Android challenge begins. hashdays-challenge.apk sha1: 0b12fd28a2d912762d37379e69189cd427eb8bbc sha256: 8acfac2d1646b7689e09aab629a58ba66029b295068ca76cdaccbdc92b4e5ea9 (it's useless to search on the servers, the solutio...
by RSS Alexandre Aumoine  |  November 15, 2011  |  Category: Security Research
Thank you to everyone who tried to solve our FortiChallenge 2k11! We've had way more participants than expected, and two winners : Shirley Chen Nagy Ferenc László Shirley and Nagy found the secret sentence, without even using the hints. A speci...
by RSS Alexandre Aumoine  |  November 03, 2011  |  Category: Security Research
Any progress on our FortiChallenge 2k11? After the first clue, here is the second. Just a reminder that the first hint is meant to help you to find the good way with hashes. Don't miss the modification, Crypto Girl hates MD5 for this reason ! By t...
by RSS Alexandre Aumoine  |  October 21, 2011  |  Category: Security Research
Stuck on our FortiChallenge 2k11? Here's a first hint! Translations: La fin est encore loin surtout quand on est sur le mauvais chemin ! Wrong track, go back! La fin est proche, l'anneau est inclus. Dawn is close, search for the ring. Mon precieu...
by RSS Alexandre Aumoine  |  October 17, 2011  |  Category: Security Research
Hello all, At Insomni'Hack 2011, we created a challenge dedicated to static reversing of Symbian executables (using SDK S60 Ed3 FP1). Sadly, nobody found the full solution, so we finally decided to put it online for you to try, until November 1st, 2...
by RSS Alexandre Aumoine  |  March 18, 2011  |  Category: Security Research
Last week we attended Insomni'Hack 2011, where our Crypto Girl (Axelle Apvrille) presented on mobile phone threats. Debriefing of the conference may be found here and there. Both blog authors highlighted the main goal of Axelle's talk, which was...
by RSS Axelle Apvrille  |  July 08, 2010  |  Category: Security Research
Lately, I have been analyzing a sample of SymbOS/Album.A!tr, another advanced malware targeting mobile phones running Symbian OS 9 and greater. First of all, once more, like SymbOS/Yxes, this malware was "legitimately" signed by Symbian's Express Si...
by RSS Axelle Apvrille  |  April 13, 2010  |  Category: Security Research
On Symbian phones, most malware are either implemented natively in C++ (over the Symbian API) or in Java (midlets). SymbOS/Enoriv.A!tr.dial uses another language called m. Usually, m scripts (.m extension) are run within the m environment, (mShell)...
by RSS Axelle Apvrille  |  March 04, 2010  |  Category: Security Research
A few days ago we encountered a new variant of the Symbian worm, Yxes, that we named SymbOS/Yxes.H!worm. This worm contacts malicious remote servers, which host Java Server Pages, and propagates by sending 'attractive' SMS messages. For instance, thi...
by RSS Axelle Apvrille  |  August 26, 2009  |  Category: Security Research
There has been a lot of confusion lately concerning the SymbOS/Yxes worm. Among those, it has now dawned on me the so-called Transmitter.C reported in numerous articles on the net (for instance, here and here), is not sexySpace.sisx (detected as Symb...
by RSS Axelle Apvrille  |  August 04, 2009  |  Category: Security Research
In case you are not familiar with the Symbian development process, application development features two major security meatures in Symbian OS 9.1 and greater. First, applications must specify their capabilities, i.e if an application uses Bluetooth c...

FortiGuard Labs on the Web

search results hidden links