Chrome PDF File Parsing 0-Day Vulnerability Threat Alert
March 12, 2019
1 Vulnerability Overview On February 28, 2019, a security vendor outside of China spotted a 0-day vulnerability in Google’s Chrome browser, which could lead to information disclosure upon a user’s opening of a malicious PDF file using Chrome. Up to now, a number of malicious samples have been found to exploit this vulnerability in the […]
IP Reputation Report-03082019
March 8, 2019
-
Top 10 countries in attack counts:
- The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at March 08, 2019.
NSFOCUS Introduces Groundbreaking Anti-DDoS Business Operation System to Cope With Evolving Cyber Threat Landscape
March 6, 2019
NSFOCUS ADBOS delivers comprehensive protection from advanced DDoS attacks through a single multi-tenant portal for optimal scalability and cost efficiency SINGAPORE, March 6, 2019 – NSFOCUS, the leader in holistic hybrid security solutions, today announced the launch of its Anti Distributed Denial-of-Service Business Operation System (ADBOS). The Asia Pacific (APAC) region has seen a sharp […]
NSFOCUS Unveils New DDoS Mitigation Solution with Contextual Analysis
March 5, 2019
Cyberwire – RSAC’s 2019 edition of its Innovation Sandbox was held yesterday, with ten of the security sector’s most interesting start-ups on display. NSFOCUS, a leader in holistic hybrid security solutions, today unveiled Attack Threat Monitoring, which provides real-time insights and contextual awareness of the global DDoS threat landscape.
NSFOCUS Unveils New DDoS Mitigation Solution with Contextual Analysis
March 4, 2019
NSFOCUS to demo Attack Threat Monitoring at RSAC USA 2019 in San Francisco from March 4 -8, 2019 SANTA CLARA, Calif., March 4, 2019 – NSFOCUS, a leader in holistic hybrid security solutions, today unveiled Attack Threat Monitoring, which provides real-time insights and contextual awareness of the global DDoS threat landscape. Attack Threat Monitoring (ATM) […]
Drupal Remote Code Execution Vulnerability (CVE-2019-6340) Threat Alert
March 2, 2019
Overview
Drupal released a security advisory, announcing remediation of a highly critical remote code execution vulnerability (CVE-2019-6430), which stems from some field types improperly sanitizing data from non-form sources, leading to potential execution of arbitrary PHP code. (more…)
Gafgy Botnet – Practitioner of the BaaS Mode
March 2, 2019
Overview
In an era of everything being connected, with the increase of IoT devices exposed on the Internet and vulnerabilities detected in them, more and more malware focuses on the inexhaustible zombie repository. Therefore, IoT platform-based malware families have undergone an exponential growth. The year 2018 alone saw 21 new variants from IoT-based botnet families. (more…)
IP Reputation Report-03012019
March 1, 2019
-
Top 10 countries in attack counts:
- The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at March 01, 2019.
Attack and Defense Around PowerShell Event Logging
February 27, 2019
0x00 Overview
PowerShell has been a focus of concern for network defense. The fileless PowerShell, featuring LotL and excellent ease of use, is widely used in various attack scenarios. In order to capture PowerShell-based attacks, an increasing number of security professionals tend to, through PowerShell event log analysis, extract attack records such as post-exploitation data for enterprise security monitoring, alerting, trackback, and forensics. (more…)
Technical Report on Container Security (IV)
February 27, 2019
Container Security Protection – Application Security
- Application Security
The ecosystem of the container technology is gradually established and various solutions become available in specific segments of containers, both of which lay a solid foundation for the container deployment. On the basis of the enterprise container deployment, the emergence of business processes revolving around container applications, especially application logic-oriented microservice architecture, brings challenges to the application security. (more…)
