Weekly Threat Briefs

FortiGuard Labs uses its industry leading global infrastructure of threat sensors, honeypots, and collectors to provide you with the largest source of data of any pure play network security vendor. Data is collected from all of these sources on a continual basis and analyzed by Fortinet’s world-wide team of analysts to provide you with a weekly recap of the incidents and threats you care the most about.

On this page you will find an archive of our weekly Threat Intelligence Briefs, as well as the ability to sign up to receive these briefs every Friday. Join the thousands of other security-minded professionals who receive these weekly briefs!

TrickBot has been in operation since 2016, and it's getting more powerful by the day. Like most software nowadays, malware also receives updates and new features. FortiGuard Labs has produced detailed research on a number of areas relating to TrickBot, including its initial access capabilities, its...

Mar 27, 2020
In the last couple of weeks, most of our Threat Intelligence Briefs have covered ransomware topics. Recent studies have shown many interesting things about ransomware, such as the fact that it remains the most prominent malware threat. Researchers revealed that 27% of all ransomware attacks take pla...

Mar 20, 2020
Paradise, a ransomware that has been active since 2017, is back with new tactics. Often ransomware spreads via phishing emails and triggers macros inside an attached office document when the document is opened. Researchers found that the current Paradise version uses new ways to deliver the malware...

Mar 13, 2020
Every minute a new organization will fall victim to a ransomware attack. Companies often rely on backups hosted on public clouds once they get hit by an attack. Cloud backups are a great option against those attacks but often fail due to misconfiguration. For example, a cloud backup is useless if an...

Mar 06, 2020
A natural gas compression facility got hit by a ransomware attack recently. The U.S. Department of Homeland Security said they had to shut down the pipeline for two days. It all started with a phishing email, including a malicious link, that a staff member opened. There was no segmentation protectio...

Feb 28, 2020