Israeli-Palestinian Conflict: Multifaceted Alliances and Fierce Cyberspace Battle

October 23, 2023
Background On October 7th, accompanied by the launch of thousands of rockets, the Palestinian Islamic Resistance Movement (Hamas) declared a military operation against Israel. As real-world conflict escalated, hacktivist organizations from various countries, including Russia, India, Indonesia, and Iraq, began engaging in continuous cyber warfare within the cyberspace domains of both sides. The primary methods […]
GovWare 2023

October 21, 2023
GovWare, Oct 17-19, 2023, Sands Expo Convention Centre, Singapore. The conference & exhibition was held with the theme of “Fostering Trust Through Collaboration in the New Digital Reality”. NSFOCUS participated this pivotal event in APAC to introduce our latest effective continuous threat exposure management (CTEM) program and XDR-powered threat analysis and response.
HTTP/2 Protection in ADS R90F03
October 20, 2023
Function Description For HTTPS application layer protection, ADS establishes a TLS connection with a client in replace of the server, and then authenticates the client through the application-layer protocol HTTP. If the client properly responds to the HTTP packet from ADS, ADS deems this client reliable and will add it to the trust list so […]
NSFOCUS AISecOps: Elevating Your Security Operations Efficacy and Mitigating Alert Fatigue

October 19, 2023
In the realm of security operations, enterprises often face challenges such as a high volume of alerts, an inability to pinpoint real threats, insufficient security knowledge, and a lack of operational staff. While the operational platforms of major security firms exhibit similarities in functionality, some companies diligently analyze customer pain points and requirements, continually enhancing […]
Six Algorithms for Defending Against the Novel “HTTP/2 Rapid Reset” DDoS Attack

October 18, 2023
A recently discovered HTTP/2 protocol-based Distributed-Denial-of-Service (DDoS) vulnerability has been identified by multiple cloud service providers. This vulnerability enables attackers to achieve an unprecedented record of 398 million requests per second. This vulnerability has been identified as CVE-2023-44487, potentially making it one of the largest layer 7 DDoS attacks ever recorded. What is HTTP/2 Rapid […]
NSFOCUS Launches CTEM Offerings to Mitigate Threat Exposure

October 17, 2023
NSFOCUS CTEM Offerings: A Comprehensive Solution to Enhance Your Security Posture Singapore – October 17, 2023 – NSFOCUS, a globally recognized leader in cybersecurity solutions, is pleased to announce a comprehensive suite of security offerings designed to enhance the Continuous Threat Exposure Management (CTEM) program for organizations of all sizes. CTEM is a 5-step process […]
APT Group DarkPink Exploits WinRAR 0-Day to Target Multiple Entities in Vietnam and Malaysia

October 13, 2023
Overview NSFOCUS Security Labs has been continuously monitoring the newly discovered WinRAR 0-day vulnerability, CVE-2023-38831. It has come to our attention that the advanced persistent threat group known as DarkPink has recently begun exploiting this vulnerability to target government entities in Vietnam and Malaysia. In this round of attack activities, DarkPink attackers have incorporated the […]
Countdown to GovWare 2023 – The Application of Artificial Intelligence (AI) in Cybersecurity

October 12, 2023
The stage is set, and the countdown has begun. GovWare 2023, a pivotal event in cybersecurity, is just around the corner. From a thorough review of the event agenda, we discerned that many speeches, keynotes and panels will be centered around the application of Artificial Intelligence (AI) in cybersecurity. As we eagerly await GovWare 2023, […]
SSL Certificate Replacement Guide for NSFOCUS ADSM and Portal
October 12, 2023
When the SSL certificate for ADSM or ADSM Portal expires, we could replace it manually on the Web GUI. ADSM Click Choose File on Administration > Local Settings > SSL Certificate Replacement to upload .crt file and .key file. Then click Replace to update the SSL certificate. ADSM Portal Click Choose File on Administration > Third-Party Interface […]
Microsoft’s October security update for multiple high-risk product vulnerabilities

October 12, 2023
Overview On October 11, NSFOCUS CERT monitored that Microsoft had released a security update patch for October, fixing 104 security problems, involving Microsoft WordPad, Skype for Business, Windows Layer 2 Tunneling Protocol, Microsoft Message Queuing and other widely used products, including high-risk vulnerability types such as privilege enhancement, remote code execution, etc. Among the vulnerabilities […]