Blog

Your blog category

Blog

Alert (AA23-040A) #StopRansomware: Ransomware Activities Related to DPRK

UPDATE 02/27/2023: Added protection for CVE-2022-24990.FortiGuard Labs is aware of a joint advisory on ransomware activities against organizations in healthcare and critical infrastructure performed by threat actors related to the Democratic People’s Republic of Korea (DPRK). The advisory was issued by multiple agencies in the United States and the Republic of Korea (ROK) and contains…

Read More Alert (AA23-040A) #StopRansomware: Ransomware Activities Related to DPRK
Blog

Cisco Discloses ’10’ Flaw in ISE, ISE-PIC — Patch Now

Cisco just disclosed a critical severity flaw in its ISE and ISE-PIC products, joining two similar bugs disclosed last month.

Read More Cisco Discloses ’10’ Flaw in ISE, ISE-PIC — Patch Now
Blog

Printer Security Gaps: A Broad, Leafy Avenue to Compromise

Security teams aren’t patching firmware promptly, no one’s vetting the endpoints before purchase, and visibility into potential dangers is limited — despite more and more cyberattackers targeting printers as a matter of course.

Read More Printer Security Gaps: A Broad, Leafy Avenue to Compromise
Blog

Armenian Extradited to US Over Ryuk Ransomware

The suspect faces three charges for his alleged crimes that could earn him up to five years in federal prison, and a heap of fines.

Read More Armenian Extradited to US Over Ryuk Ransomware
Blog

Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters

Threat actors are leveraging public GitHub repositories to host malicious payloads and distribute them via Amadey as part of a campaign observed in April 2025. “The MaaS [malware-as-a-service] operators used fake GitHub accounts to host payloads, tools, and Amadey plug-ins, likely as an attempt to bypass web filtering and for ease of use,” Cisco Talos…

Read More Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters
Blog

Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner

Cybersecurity researchers have discovered a new campaign that exploits a known security flaw impacting Apache HTTP Server to deliver a cryptocurrency miner called Linuxsys. The vulnerability in question is CVE-2021-41773 (CVSS score: 7.5), a high-severity path traversal vulnerability in Apache HTTP Server version 2.4.49 that could result in remote code execution. “The attacker leverages

Read More Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner
Blog

Why Cybersecurity Still Matters for America’s Schools

Cyberattacks on educational institutions are growing. But with budget constraints and funding shortfalls, leadership teams are questioning whether — and how — they can keep their institutions safe.

Read More Why Cybersecurity Still Matters for America’s Schools
Blog

China-Backed Salt Typhoon Hacks US National Guard for Nearly a Year

Between March and December of last year, infamous Chinese state-sponsored APT Salt Typhoon gained access to sensitive US National Guard data.

Read More China-Backed Salt Typhoon Hacks US National Guard for Nearly a Year
Blog

AI Driving the Adoption of Confidential Computing

After years of hanging out in the wild, confidential computing is getting closer to an AI model near you.

Read More AI Driving the Adoption of Confidential Computing
Blog

Europol Disrupts NoName057(16) Hacktivist Group Linked to DDoS Attacks Against Ukraine

An international operation coordinated by Europol has disrupted the infrastructure of a pro-Russian hacktivist group known as NoName057(16) that has been linked to a string of distributed denial-of-service (DDoS) attacks against Ukraine and its allies. The actions have led to the dismantling of a major part of the group’s central server infrastructure and more than…

Read More Europol Disrupts NoName057(16) Hacktivist Group Linked to DDoS Attacks Against Ukraine