Our Compromise Assessment service report features such a hidden threat as generative AI
Users receive attackers’ remote access tool along with popular freeware
Some stats on threats found in backups during compromise assessment
New attacks use .vbs droppers, .com droppers, and .com stealer written in Rust
Registration of a malicious provider can be detected in ProviderOrder and ProviderPath parameters
What if your decompiler doesn’t support some RISC-V instructions
A 2020 vulnerability still allows a local user to elevate privileges to SYSTEM
Vulnerability CVE-2025-47179 allows for full control over SCCM
A chain of events 4023 and 4021 from the same IP address means an attack
We found out which local LLMs are better at finding vulnerabilities
Severe vulnerability allows an unprivileged user to gain root
Fake RPC server can impersonate the security context of the calling client, up to SYSTEM
We found a vulnerabilty in a popular LLM agent
An attacker can take over the domain if automatic client push installation is enabled on the server
Previously, pentesting tools did not work with 802.11r hashes
Combining MDR and IR statistics provides a better understanding of current and emerging threats
Overly autonomous LLM executes commands not requested by the user
How our MDR team investigated a Brazilian hacker attack on Mexico
What types of attacks are leading in different sectors in different years?
An attacker with a FortiCloud account can log in to other users’ FortiOS