Description The FortiGuard Incident Response team is ready to assist
with the discovery, containment, and remediation of intrusions that have
originated from the 3CX supply chain attack. Whilst adversary
infrastructure associated with this campaign w...
Introduction On 22 March 2023 multiple AV and EDR products began
identifying anomalous behavior originating from the main process for the
3CX desktop application (3CXDesktopApp.exe), a legitimate PBX
application used by customers across the globe. Be...
Description The FortiGuard Incident Response team are ready to assist
with the discovery, containment and remediation of incidents related to
exploitation of Telerik UI vulnerabilities. Vulnerabilities in the
Telerik UI initially disclosed and patche...
Introduction Play emerged in June 2022 as a new ransomware family and an
associated ransomware group. The FortiGuard Incident Response (IR) and
MDR teams have observed Play ransomware activity targeting customers
predominantly in LATAM. This aligns w...
Description The FortiGuard Incident Response team are ready to assist
with the discovery, containment, and remediation of intrusions that have
originated from the exploitation of vulnerabilities in external facing
services. A recently announced vulne...