FortiGuard Labs

Fortinet’s Global Threat Intelligence and Research Organization

Global Threat Landscape Report, 1H 2023

Overview

Outbreak Alerts

Media & Resources

Security Portfolio

Overview

Outbreak Alerts

Media & Resources

Security Portfolio

AI-Powered Threat Intelligence for an Evolving Digital World

As cyber threats continue to grow and evolve, so does the need for innovative solutions and reliable threat intelligence. Using millions of global network sensors, FortiGuard Labs monitors the worldwide attack surface and employs artificial intelligence (AI) to mine that data for new threats, ensuring you are prepared for what’s coming.

Active Outbreak Alerts

When a cybersecurity attack with large ramifications affects numerous organizations, FortiGuard Outbreak Alerts are here to help you understand what happened, learn the technical details of the attack, and how you can protect yourself now and in the future.

Jul 26, 2023

Severity: medium

WooCommerce Payments Improper Authentication Vulnerability

Attack Type: Vulnerability

Effect: WooCommerce (version 4.8.0 through 5.6.1), a popular e-commerce payment plugin for WordPress sites designed for small to large-sized online merchants, has been affected by an authentication bypass vulnerability. Successful exploitation of the vulnerability could allow an unauthorized attacker to gain admin privileges on the WordPress websites potentially leading to the site takeover, impersonate arbitrary users, including an administrator.

Outbreak Details » Threat Signal Report »

Jul 17, 2023

Severity: high

Microsoft Office and Windows HTML RCE Vulnerability

Attack Type: Vulnerability, Attack

Effect: Microsoft has identified a phishing campaign conducted by the threat actor tracked as Storm-0978 targeting defense and government entities in Europe and North America. The campaign involved the abuse of CVE-2023-36884, a remote code execution vulnerability exploited via specially crafted Microsoft Office documents spread using phishing techniques.

Outbreak Details » Threat Signal Report »

Jul 6, 2023

Severity: high

SolarView Compact Command Injection Vulnerability

Attack Type: Vulnerability, OT/ICS

Effect: FortiGuard Labs observed a huge spike in attack attempts relating to a command injection vulnerability in SolarView Compact (Solar power generation monitoring system) with upto more than 18,000+ unique IPS detections in the month of July 2023. The exploit works due to the vulnerability in SolarView Compact confi_mail.php component, which fails to adequately sanitize the user-supplied input data, leading to command injection.

Outbreak Details » Threat Signal Report »

Subscribe today to have threat alerts delivered to your inbox Cyberattacks can occur at any time. The number of outbreak alerts you receive can vary anywhere from once per month to several times per week.

FortiGuard Labs Media & Resources

Join Fortinet's top threat experts as they delve into today's critical cybersecurity topics and the ever-evolving cyber threat landscape.

Threat Intelligence Podcast

The Evolution of Cyberattack Trends in ANZ (Episode 58)

Listen in to the next episode of the FortiGuard Labs Threat Intelligence Podcast as Glenn Maiden, Jordan Heerspring, and Joshua Alcock explore how attacks trends are shifting in 2023, contributing factors to keep in mind in terms of social engineering, and what organizations can be doing to prepare, prevent, limit, and recover from ransomware attacks. Other topics include: the increase in ransomware targeting mobile devices, the role training can play in reducing organizational risk and closing advice each security expert has to offer.

Listen Now

Blog Posts

Blogs

Key Findings from the 1H 2023 FortiGuard Labs Threat Report | FortiGuard Labs »

FortiGuard Labs examine the cyber-threat landscape over the year's first half to identify trends and share insights with security professionals. Read more into the key takeaways from the report.

Ransomware Roundup - DoDo and Proton | FortiGuard Labs »

FortiGuard Labs investigates DoDo and Proton ransomware and how their distribution methods have the potential to affect users around the world. Learn more.

FortiGuard Labs Discovers Multiple Vulnerabilities in Microsoft Message Queuing Service | FortiGuard Labs »

Get an overview of the attack surfaces of MSMQ, the approaches taken to tackle the challenges encountered during fuzzing, and additional details of the vulnerabilities. Learn more.

Ransomware Roundup - Cl0p | FortiGuard Labs »

Learn about the Cl0p ransomware group's past activities including using the MOVEit Transfer vulnerability to compromise organizations.

DDoS Botnets Target Zyxel Vulnerability CVE-2023-28771 | FortiGuard Labs »

Get a detailed explanation of the payload delivered through CVE-2023-28771 and associated botnets. Lean more.

FortiGuard Labs Discovers Multiple Vulnerabilities in Adobe InDesign | FortiGuard Labs »

FortiGuard Labs sheds some details on several zero-day vulnerabilities in Adobe InDesign that have been assigned a Critical or Important severity. Learn more.

LokiBot Campaign Targets Microsoft Office Document Using Vulnerabilities and Macros | FortiGuard Labs »

FortiGuard Labs investigates malicious Microsoft Office documents that dropped the LokiBot malware onto a victim's system. Get an analysis of the intricacies of this threat and awareness of its operational methods.

Meet LockBit: The Most Prevalent Ransomware in 2022 | FortiGuard Labs »

Get insights into the most notorious ransomware in 2022, preying on hundreds of victims and undergoing several evolutions over the past few years.

FortiGuard Labs News

news

CTV News Vancouver: An Interview with Derek Manky, Fortinet’s Chief Security Strategist »

FBI Warns against public phone charging stations

Fortinet Expands its Services and Training Offerings to Further Support SOC Teams in Preventing and Defending Against Cyber Threats »

To address the talent shortage facing SOC teams Fortinet's enhanced services help SOC teams reduce their cyber risk concerns and allowing more time for higher-priority projects. View the details in the press release.

Fortinet Research Finds Over 80% of Organizations Experience Cyberattacks that Target Employees »

New research underscores the importance of effective cyber awareness training for employees to decrease cyber risks, with more than 50% of leaders indicating their employees lack proper knowledge

Fortinet Joins the Joint Cyber Defense Collaborative (JCDC) to Continue Strengthening U.S. Cybersecurity Resiliency »

“Fortinet is honored to become a member of JCDC to build on our existing collaboration and trusted relationship with the U.S. government to help improve our nation’s cybersecurity.” - Ken Xie, Founder, Chairman of the Board, and Chief Executive Officer at Fortinet

Latest Videos

Latest Reports & On-demand Video

Webinars and Videos

Stay Ahead of Cybercriminals with Current and Reliable Threat Intelligence »

By integrating current threat intelligence into defense strategies, cybersecurity staff can effectively anticipate, prevent, and respond to cyberattacks. This webinar will walk through the concept of Threat Informed Defense, the MITRE CTID, two recently published projects, and current projects in the works.

A Visionary Approach to Cybersecurity »

The threat landscape is changing faster than ever. Over the past six months, FortiGuard Labs identified 10,666 new ransomware variants—twice as many as in the previous 6 months. See what our experts had to say.

A Deep Dive into the Global Threat Landscape »

Our FortiGuard Labs experts discuss the cyber threat activity we saw in the second half of 2022, predictions for 2023, and smart strategies you can implement today.

Latest Reports

Latest Reports & On-demand Video

Reports

White Papers

Global Threat Landscape Report, 1H 2023 »

FortiGuard Labs 1H 2023 Global Threat Landscape Report provides valuable intelligence and early warning for potential threat activity.

Cyber Threat Predictions for 2023 »

An Annual Perspective by FortiGuard Labs

Global Threat Landscape Report, 2H 2022 »

New vulnerabilities are on the rise, but don’t count out the old. Don’t become a statistic - get the latest Global Threat Landscape report.

Global Threat Landscape Report, 1H 2023 »

FortiGuard Labs 1H 2023 Global Threat Landscape Report provides valuable intelligence and early warning for potential threat activity.

Global Threat Landscape Report, 2H 2022 »

New vulnerabilities are on the rise, but don’t count out the old. Don’t become a statistic - get the latest Global Threat Landscape report.

FortiGuard Labs Partners

FortiGuard Labs believes that sharing intelligence and working with other threat intelligence organizations improves protections for customers and enhances the effectiveness of the entire cybersecurity industry. Our leadership helps take the fight to our adversaries and produces a more successful disruption model by leveraging these relationships.

Cyber Threat Alliance: Solving Actionable Intelligence Through A Diverse Ecosystem

For decades we have been faced with the classic ‘last mile’ challenge when it comes to information sharing and threat intelligence.

Watch Now

Fortinet Elevates Its Commitment to MITRE Engenuity Center for Threat-Informed Defense

Fortinet is now an official Research Partner with MITRE Engenuity’s Center for Threat-Informed Defense (Center).

Read Blog

Security Services

Our experts develop and utilize leading-edge machine learning (ML) and artificial intelligence (AI) technologies to provide timely and consistently top-rated protection and actionable threat intelligence. This enables IT and security teams to better secure their organizations. FortiGuard Labs is the driving force behind FortiGuard AI-powered Security Services. Its services counter threats in real-time with ML-powered, coordinated protection and are natively integrated into the Fortinet Security Fabric, enabling fast detection and enforcement across the entire attack surface.

diagram pillar fabric banner fortiguard dark

FortiGuard Services Portfolio

Application Security

FortiGuard application security services protect, monitor, and optimize application performance and usage.

Services