Search This Blog

Monday, June 5, 2017

New Loki Variant Being Spread via PDF File | Fortinet Blog

The Loki Bot has been observed for years. As you may know, it is designed to steal credentials from installed software on a victim’s machine, such as email clients, browsers, FTP clients, file management clients, and so on. FortiGuard Labs recently captured a PDF sample that is used to spread a new Loki variant. In this blog, we will analyze how this new variant works and what it steals.



New Loki Variant Being Spread via PDF File | Fortinet Blog

Spring Parade for Refreshed Android Marcher | Fortinet Blog

Android malware continues to grow exponentially now that it has overtaken the top position as the most popular OS (across all platforms), making it the target of choice for malware authors. Android Marcher is an Android banker malware that has been on the FortiGuard Labs radar since late 2013. Since that time it has been seen in a number of campaigns targeting many different banks and countries. And now, Marcher has once again resurfaced with a new campaign. Over the past few months we have observed it masking itself in a variety of ways – sometimes hiding behind the icons of games, banks or popular applications to lure victims into installing it on their devices.



Spring Parade for Refreshed Android Marcher | Fortinet Blog

Byline: What is Next for Cloud Services in the Federal Space? | Fortinet Blog

Historically, federal agencies have been wary of using public cloud due to security concerns. Yet the agility and cost savings offered by cloud infrastructure is proving to be a major incentive, leading to a recent big push for agencies to re-engage with public cloud providers. 



Byline: What is Next for Cloud Services in the Federal Space? | Fortinet Blog

Infographic: Protecting Today’s Financial Services Industry in a Digital Environment | Fortinet Blog

Consumers around the world across a variety of industries are adopting digital technologies to improve their daily lives, and they expect organizations to support this behavior. In the financial services sector, they’re using technologies like digital banking and insurance apps for tasks that used to be completed offline.



Infographic: Protecting Today’s Financial Services Industry in a Digital Environment | Fortinet Blog

An Inside Look at CVE-2017-0199 – HTA and Scriptlet File Handler Vulnerability | Fortinet Blog

FortiGuard Labs recently came across a new strain of samples exploiting the CVE-2017-0199 vulnerability. This vulnerability was fixed by Microsoft and the patch was released in April 2017. Due to its simplicity, it can be easily exploited by attackers. It has also been found in-the-wild by other vendors. We have also blogged about some samples recently found in spear phishing attack.



An Inside Look at CVE-2017-0199 – HTA and Scriptlet File Handler Vulnerability | Fortinet Blog

Hands-on with Apple's new MacBooks

New iPad, new screen size