Adeline Zhang

Personal Computer——Password Grading

December 7, 2018

Case AnalysisCase Analysis Many people use the same user names and passwords to access different websites. This makes it possible for hackers to use the password for access to a website that has been hacked to log in to other websites. Each password for each website seems unlikely. To solve this issue, you can follow […]

Satan Variant Analysis & Handling Guide

December 6, 2018

1 Background

In early November 2018, NSFOCUS discovered that some of its financial customers had been infected with a worm virus FT.exe that could affect both Linux and Windows platforms. Like the ransomware Satan, the virus spreads itself by exploiting multiple application vulnerabilities. However, this virus, after breaking into the system, does not do anything obviously damaging, but only spreads itself.

At the end of Novemb (more…)

Technical Report on Container Security (III)-1

December 5, 2018

Security Risks and Challenges — Vulnerability and Security Risk Analysis

Vulnerability and Security Risk Analysis

As a specific implementation of the container technology, Docker is getting more and more popular in recent years. To some extent, Docker has become a typical representation of the container technology. Docker is based on the common client/server (C/S) architecture design as shown in Figure 3.1. In this architecture, the Docker daemon (server) runs on the Docker host and the Docker client sends requests to the daemon. This chapter uses Docker as an example to describe containers’ vulnerabilities and security risks. (more…)

60 Cybersecurity Predictions For 2019

December 4, 2018

Forbes – I’ve always been a loner, avoiding crowds as much as possible, but last Friday I found myself in the company of 500 million people. The breach of the personal accounts of Marriott and Starwood customers forced us to join the 34% of U.S. consumers who experienced a compromise of their personal information over […]

Cyber Defense eMagazine 2018 – Recidivist Hackers

December 4, 2018

Cyber Defense Magazine – Recidivist is an interesting word. It means “a convicted criminal who reoffends, especially repeatedly.” The word had common usage in the last century although it started to fall into disuse the last 30 years or so. There isn’t another word that aptly describes the behavior identified in the NSFOCUS 2018 H1 […]

Personal Computer——Encrypted File Storage

December 4, 2018

Case AnalysisCase Analysis If files are stored in the hard disk, they may be read by others stealing the computer. If files are put in an encrypted disk, others obtaining this disk must type the encryption password before viewing the files. This effectively prevents disclosure of important files. Security Tips/Takeaways Store sensitive files in an […]

Sample Analysis Report-3

November 26, 2018

1 Sample Introduction

1.1 Sample Type

The sample is a Trojan, which belongs to the Tsunami family. (more…)

Wi-Fi Security——Automatic Connection to Wi-Fi

November 24, 2018

Case AnalysisCase Analysis When finding a bogus Wi-Fi hotspot with the same name as a legitimate one, smartphones also try to connect to it with the stored password. This gives hackers access to legitimate Wi-Fi networks. Security Tips/Takeaways Disable WLAN on smartphones and laptops when Wi-Fi is not used, in case the devices automatically connect […]

Adobe Flash Player Remote Code Execution Vulnerability Threat Alert

November 23, 2018

Overview

On November 20, 2018, local time, Adobe released a security advisory for documenting the remediation of a critical vulnerability in Adobe Flash Player. Successful exploitation of this vulnerability could allow attackers to remotely execute arbitrary code. (more…)

Sample Analysis Report

November 22, 2018

1 Sample Introduction

1.1 Sample Type

This sample is a trojan, similar to Satori which is a Mirai variant. (more…)

Search

Subscribe to the NSFOCUS Blog