Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at February 01, 2019. (more…)
Year: 2019
Mobile Office—SIM and SD Card Security
Case AnalysisCase Analysis If you do not report the loss of the SIM card after your phone is lost, a hacker may use it to obtain SMS verification codes. Activation of the quick pay service requires only the ID card number, bank card number, and SMS verification code. (more…)
NSFOCUS Releases IP Chain Gang Report on Behavior of Recidivist Hackers
In a new report, NSFOCUS introduced the IP Chain-Gang concept, in which each chain-gang is controlled by a single threat actor or a group of related threat actors that exhibit similar behavior among the various attacks conducted by the same gang. The report analyzes the IP Chain-Gangs attack types,...
APT/APT-GET RCE Vulnerability (CVE-2019-3462) Handling Guide
1 Vulnerability Overview Recently, a security researcher discovered a critical vulnerability in the Advanced Packaging Tool (APT) of Linux. This vulnerability stems from the APT's failure to properly handle redirects, which can be triggered via a man-in-the-middle attack or a malicious package mirror, resulting in remote code execution. (more…)
Technical Report on Container Security (IV)-5
Container Security Protection – Container Network Security Container Network Security (more…)
Chrome 72 arrives with code injection blocking and new developer features
VentureBeat - Google today launched Chrome 72 for Windows, Mac, and Linux. The release includes code injection blocking and new developer features. You can update to the latest version now using Chrome’s built-in updater or download it directly from google.com/chrome. With over 1 billion users, Chrome is both a browser...
