Overview Recently, researchers have discovered the Apache Flink Jar package to upload the attack data. Attackers can exploit this vulnerability to upload a Jar package containing malicious code without authorization, thereby taking control of the target server. (more…)
Blog
Tracking and Analysis of the LoJack/CompuTrace Incident
1. Introduction to LoJack With a history of 20 years, Absolute Software has been a leading provider for device security, management, and tracking. Its products have set an industry standard for persistent endpoint security and data risk management for computers, laptops, tablets, and smartphones. In 2005, Absolute Software released LoJack...
NSFOCUS Assures Security for Commercial 5G Services
NSFOCUS was invited to attend the China Information and Communication Industry Development Summit 2019 held in Beijing on October 30, 2019 and was awarded the "5G Innovation Enterprise" in this summit.  NSFOCUS assures security for commercial 5G services  (more…)
IP Reputation Report-12012019
Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at December 01, 2019. (more…)
Cybersecurity Insights-7
Insights into Malicious Traffic 5.1 Vulnerability Exploitation Here we classify vulnerabilities into server vulnerabilities desktop application vulnerabilities device vulnerabilities (more…)
Apache Solr Remote Code Execution Vulnerability (CVE-2019-12409) Threat Alert
Vulnerability Description On November 18, local time, Apache Software Foundation (ASF) released an official security bulletin to reveal a remote code execution vulnerability (CVE-2019-12409) in Apache Solr. This vulnerability exists and can bring security risks because the configuration item ENABLE_REMOTE_JMX_OPTS in the configuration file solr.in.sh is enabled by default. If...
