FortiGuard Labs Threat Research

IngressNightmare: Understanding CVE‑2025‑1974 in Kubernetes Ingress-NGINX

Get an overview on how the CVE-2025-1974 works, a proof-of-concept demo of the exploit, along with outlined mitigations and detection strategies.

By Jamie Mcmurray April 23, 2025

FortiGuard Labs Threat Research

Infostealer Malware FormBook Spread via Phishing Campaign – Part I

FortiGuard Labs observed a phishing campaign in the wild that delivered a malicious Word document as an attachment. Learn more.

By Xiaopeng Zhang April 22, 2025

FortiGuard Labs Threat Research

New Rust Botnet "RustoBot" is Routed via Routers

FortiGuard Labs recently discovered a new botnet propagating through TOTOLINK devices. Learn more about this malware targeting these devices.

By Vincent Li April 21, 2025

Industry Trends

Fortinet and the Joint Cyber Defense Collaborative: Celebrating Two Years of Progress

In 2023, Fortinet became a member of JCDC, expanding our commitment to fortifying the cybersecurity of our nation. Fortinet celebrates the two years of progress with JCDC, continuing our commitment to bring together public and private organizations to gather, analyze, and share actionable insights to help proactively protect and defend against cyberthreats.

By Val Saengphaibul April 18, 2025

Industry Trends

MITRE Impact Report 2024: Strengthening Threat-Informed Defenses

To mark the organization’s fifth anniversary, MITRE's Center for Threat-Informed Defense published its 2024 Impact Report, which details the organization’s 40 open-source research projects and how they benefit the cybersecurity community. This is a closer look at three of those initiatives, along with how they fortify the defender’s arsenal by providing real-world visibility, predictive insights, and resilient strategies.

By Douglas Jose Pereira dos Santos April 15, 2025