Fortinet Community

Introduction On 14 October 2022 Microsoft Threat Intelligence Center (MSTIC) disclosed information on a new ransomware family being used as part of a campaign targeting transport and logistics industries in Ukraine and Poland[1]. The ransomware is wr...

Introduction On 11 Aug CISA released an advisory[1] that provided information on observed IOCs and mitigations associated with recent intrusions that incorporated Zeppelin ransomware. Zeppelin ransomware is a ransomware family operated through the Ra...

Introduction Agent Tesla is .NET based spyware that has been a consistent feature of the global threat landscape for a number of years. Agent Tesla is commercially available software that various threat actors can purchase on a monthly or yearly lice...

Description In January 2020 security researcher Imre Rad identified a vulnerability he dubbed “DogWalk”[1]. This vulnerability was disclosed to Microsoft but Microsoft made the decision not to patch the vulnerability at this time as they believed it ...

Description On 02 June 2022 Atlassian released an advisory for a critical OGNL injection vulnerability in their Confluence product that allows for Remote Code Execution (RCE). This vulnerability allows for arbitrary code execution on an accessible en...