Santa Clara, Calif. May 14, 2025 - Recently, Gartner released the "Market Guide for Cloud Web Application and API Protection"[1], and NSFOCUS was selected as a Representative Vendor with its innovative WAAP solution. We believe this recognition reflects the technical accumulation and practical capabilities of NSFOCUS WAF in the field of...
Author: admin
India-Pakistan Conflicts Escalating: Military Operations and DDoS Attacks Making Targeted Strikes
Background On May 7, 2025, NSFOCUS Fuying Lab released "Two-Front Confrontation: Parallel Narratives of India-Pakistan Reality Friction and Cyber DDoS Attacks", which analyzed the DDoS attack activities in the early stage of India-Pakistan friction. This article is the second in this series, mainly analyzing the DDoS attack activities against India...
High Risk Warning for Windows Ecosystem: New Botnet Family HTTPBot is Expanding
Overview In April 2025, the Global Threat Hunting system of NSFOCUS Fuying Lab detected a significant increase in the activity of a new Botnet Trojan developed based on Go language. Given that many of its built-in DDoS attack methods are HTTP-based, Fuying Lab named it HTTPBot. The HTTPBot Botnet family...
Elastic Kibana Prototype Contamination Leads to Arbitrary Code Execution Vulnerability (CVE-2025-25014)
Overview Recently, NSFOCUS CERT detected that Elastic issued a security bulletin to fix the arbitrary code execution vulnerability caused by Elastic Kibana prototype contamination (CVE-2025-25014); Due to the prototype contamination problem in Kibana, an attacker with specific role privileges can bypass the authentication mechanism by constructing specially crafted file uploads...
Two Battlegrounds: India-Pakistan Conflicts and DDoS Attacks
Background Monitoring data from the Global Threat Hunting System of NSFOCUS Fuying Lab shows that since the terrorist attack on tourists in Pahargam Town, Indian-controlled Kashmir on April 22, 2025 (killing 26 people), there has been a significant surge in DDoS attacks between India and Pakistan. This escalation of cyber...
NSFOCUS ISOP: Reshaping Security Operations with Autonomous SOC
In the daily operations of traditional Security Operations Centers (SOCs), operators often face two major challenges: Massive alerts which are often too many for SOC operators: critical security incident may hide in daily massive alerts, as too many alerts can easily distract and exhaust the limited SOC resource, preventing SOC...
