Threat Coverage: FortiEDR mitigates the risk of po...

mrobson · 07-14-2024

Introduction Brain Cypher is a new ransomware variant built using the leaked LockBit 3.0 builder. This ransomware variant does not appear to be offered as a RaaS offering, as many new variants are, and is likely built by a dedicated group of operator...

mrobson · 06-03-2024

Introduction Akira is a ransomware group that began operating in March 2023. We originally wrote an article on Akira ransomware in June 2023[1] outlining how FortiEDR protects against Akira ransomware. Since the release of this article Akira have mov...

mrobson · 02-13-2024

Introduction SparkRAT is an open source, cross platform remote access tool (RAT) written in Golang[1]. SparkRAT has been employed by various threat actor groups including Winnti[2] and DragonSpark[3]. Most recently, SparkRAT was identified as a core ...

mrobson · 01-07-2024

Introduction In October 2023, the source code for a ransomware family dubbed ‘HelloKitty’ was leaked on the XSS forum[1]. This variant is suspected to be a later iteration of the FiveHands ransomware[2] based on shared infrastructure and code similar...

mrobson · 07-09-2023

Description The FortiGuard Incident Response team is ready to assist with the discovery, containment, and remediation of intrusions within victim environments. The FortiGuard Incident Response team is available 24/7 to support organizations throughou...

User Statistics

User Activity

Threat Coverage: How FortiEDR protects against Brain Cypher Ransomware

Threat Coverage: How FortiEDR protects against Megazord ransomware (Akira group)

Threat Coverage: How FortiEDR protects against SparkRAT activity

Threat Coverage: How FortiEDR protects against HelloKitty/TellYouThePass Ransomware

Technical Tip: Engaging FortiGuard Incident Response Services to respond to Outbreaks

Threat Coverage: FortiEDR mitigates the risk of po...

KCS