ThinkPHP 5.0-5.0.23, 5.1.0-5.1.31, and 5.2.* Remote Code Execution Vulnerability Handling Guide
January 21, 2019
1 Vulnerability Overview
Recently, ThinkPHP 5.0-5.0.23 was found to have a remote code execution (RCE) vulnerability. The NSFOCUS Falcon Team carried out tests and found that ThinkPHP 5.0-5.0.23, 5.1.0-5.1.31, and 5.2.* were also prone to this vulnerability, which could be triggered in both Linux and Windows systems. (more…)
Researchers analyze DDoS attacks as coordinated gang activities
January 21, 2019
Help Net Security – In a new report, NSFOCUS introduced the IP Chain-Gang concept, in which each chain-gang is controlled by a single threat actor or a group of related threat actors and exhibit similar behavior among the various attacks conducted by the same gang. Researchers analyzed attack types, volume, size of events, gang activities, […]
Are Smart Cities Secure?
January 20, 2019
RFID Journal – Planning and oversight have the most significant impact when securing a smart city utilizing Internet of Things and RFID technologies. Recently, I participated in several tenders for smart-city projects around the world. I also partook in CEO roundtable discussions at Telecom Exchange LA, including one about what Los Angeles would look like […]
IP Reputation Report-01182019
January 18, 2019
Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at January 18, 2019. CN dropped from 51% to 43% and US increased from 9% to 12% from last week. Top 10 countries in attack percentage: From the diagram […]
Mobile Office——SMS phishing
January 18, 2019
Case Analysis
This story starts from an SMS message and ends with financial loss, sounding just like an ordinary telecom fraud. But it is distinctive in that a malicious link and a web page that contains a trojan are leveraged, indicating that the attacker is quite tech-savvy. After the mobile phone is infected with the trojan, the hacker can listen for and intercept SMS verification codes in the background. By using such information and the user’s ID card number and bank account information previously collected, the perpetrator can sign up for the quick pay service.
The Daily Briefing
January 18, 2019
CyberWire – Yesterday Troy Hunt announced, to considerable éclat, the discovery of a large trove of credentials for sale in a dark web souk. He calls it “Collection #1.” The hood offering the material for sale goes by the nom-de-hack of “Sanixer.” KrebsOnSecurity contacted Sanixer and concluded that the material is relatively old, gleaned from […]
NSFOCUS Detects Two Satan Variants Targeting Financial Sector
January 17, 2019
In early November of 2018, NSFOCUS spotted the first variant of Satan malware that targets Linux and Windows systems and spreads by exploiting various application vulnerabilities. A few weeks later, NSFOCUS came across a second variant of this Satan, capable of self-propagation via Windows and Linux platforms. These two variant detections are just another […]
NSFOCUS Identifies IP Chain-Gangs in New Cybersecurity Insights Report
January 17, 2019
Report Studies and Analyzes DDoS Attacks as Coordinated Gang-Activities SANTA CLARA, Calif., January 17, 2019 – NSFOCUS, a leader in holistic hybrid security solutions, today released its Behavior Analysis of IP Chain-Gangs report, a follow up to their H1 Cybersecurity Insights report, which found that more than 27 million attack sources detected by NSFOCUS, 25 […]
ThinkPHP 5.0.* Remote Code Execution Vulnerability Handling Guide
January 17, 2019
1 Vulnerability Overview
Recently, ThinkPHP 5.0.* is prone to a remote code execution vulnerability that has been officially fixed. All related users should stay wary and take precautions as soon as possible. (more…)
Morning Cybersecurity: Cyberattacks could cost trillions globally
January 17, 2019
POLITICO – OUCH! CYBERCRIME LOSSES WILL STING — Research out today from Accenture found that cyberattacks could cost companies worldwide some $5.2 trillion over five years. That’s according to more than 1,700 CEOs and C-suite executives in Accenture’s first survey of business leaders on the financial toll from criminal hackers. High tech is expected take […]
