fortiguard | Page 8


I don’t think a day goes by without hearing about another company that was a victim of a data breach.  These companies are not small either.  Organizations like the Office of Personnel Management (OPM), The Internal Revenue Service (IRS), United Airlines and many others have all lost very sensitive data.  Despite significant investments in the latest next-generation technologies, software defined networks, virtualized data centers, and new detection and alerting capabilities for anomalous traffic we still seem to be losing the... [Read More]
by RSS Anthony Giandomenico  |  Apr 08, 2016  |  Filed in: Industry Trends
Fortinet, like most members of the security community, understands that we’re entering uncharted territory as the Internet of Things becomes a mainstream phenomenon. To that end, Fortinet invests significant resources into threat intelligence and researchers who work every day to discover new vectors of attack and strategies for cyber infection before they can be deployed maliciously. One such vector, discovered by Fortinet senior threat researcher, Axelle Apvrille, allows an attacker to inject unauthorized code onto a Fitbit band over... [Read More]
by RSS Derek Manky  |  Oct 23, 2015  |  Filed in: Industry Trends
Last week, FortiGuard Labs announced a remote denial of service vulnerability in the Teradata Gateway and Teradata Express. Teradata is a leading provider of big data solutions including business intelligence, data warehousing, CRM, and more. Many high-profile global enterprises use Teradata and the vulnerability could be used for corporate espionage or to to draw attention away from other malicious actions such as exfiltrating data and compromising other systems. Because this vulnerability does not require an attacker to be authenticated, it... [Read More]
by RSS Anthony Giandomenico  |  Jul 23, 2015  |  Filed in: Security Research
Today, Adobe has released a new announcement of vulnerabilities, 3 of which were discovered by researchers at FortiGuard Labs. Adobe Flash and Shockwave continue to be a challenge for organizations and vendors to keep secure. Memory corruptions can lead to the development of zero-day exploits against systems and there are overlaps in feature sets between versions of Shockwave and Flash. FortiGuard Lab researchers are finding chatter among hacker groups that leads us to believe attackers are still finding Flash and Shockwave as a viable and... [Read More]
by RSS Aamir Lakhani  |  Jul 14, 2015  |  Filed in: Industry Trends
Trust is a tricky thing. It’s hard to gain, easy to lose, and exceptionally difficult to win back. Following the Edward Snowden disclosures and ongoing wrangling in Congress and the courts about privacy, monitoring, and data collection, trust between the public and private sectors, especially in the IT and security space, has been in short supply. It comes as no surprise then, that more than a few companies and individuals in the security industry have pushed back on government efforts to increase data sharing and collaboration around threat... [Read More]
by RSS Chris Dawson  |  May 19, 2015  |  Filed in: Industry Trends
There are a lot of trends and conversations being explored at this year's RSA Conference in San Francisco, CA. Among the most talked about is just how vulnerable businesses are when there is no protection around social media usage by employees. While this topic can certainly set off controversy, it doesn’t necessarily have to if you have the right security strategy in place. Digital Strategist Jonas Tichenor speaks with Fortinet Security Strategist Richard Henderson about social media and ways to keep your organization safe. [Read More]
by RSS Jonas Tichenor  |  Apr 22, 2015  |  Filed in: Industry Trends
Tucked deep in the Pacific Northwest, there is a global battle being faught. The battle is over the world’s data and no company is safe. But as Digital Strategy Director, Jonas Tichenor shows us, there is a team of hackers and analysts detecting, analyzing, and stopping attacks, sometimes before they start! [Read More]
by RSS Jonas Tichenor  |  Apr 20, 2015  |  Filed in: Business and Technology
There was a very clear and present sound on the convention floor this year at HIMSS in Chicago, Illinois, a buzz that resonated particularly with the team at Fortinet and it was the need for a multi-layered strategy around cybersecurity and the healthcare industry. Many who attended say they are just waiting for the next big headline news attack that shakes the very core of patient data and how doctors care for their patients in new and innovative ways. Fortinet’s presence at HIMSS also signaled to many, a shift in the industry towards the... [Read More]
by RSS Jonas Tichenor  |  Apr 16, 2015  |  Filed in: Industry Trends
Last month, researchers in Fortinet’s threat research division, FortiGuard Labs, discovered a vulnerability in MongoDB that would allow hackers to remotely crash the database application. Characterizing the vulnerability as “widespread”, the researchers successfully demonstrated a denial of service attack against legacy versions of the database that users could initiate remotely. MongoDB has quickly become the most popular NoSQL database in use today. NoSQL was developed to address the need to store and process unstructured... [Read More]
by RSS Chris Dawson  |  Mar 28, 2015  |  Filed in: Security Research
BSides held its third annual conference in Vancouver, Canada. A successful event attended by local security researchers and whitehat hackers alike. A few delegates from other countries can also be seen hanging around. With lots of nice presentations loaded with mix topics as you will normally can see from other big conferences. Reversing Malware I personally have presented a talk about reverse engineering titled: “Malware Analysis in a Straightjacket”. I talked about some of varying techniques that the malware use in order to avoid... [Read More]
by RSS Raul Alvarez  |  Mar 26, 2015  |  Filed in: Security Research