Blog

Sample Analysis Report-3

November 26, 2018 | Adeline Zhang

1 Sample Introduction 1.1 Sample Type The sample is a Trojan, which belongs to the Tsunami family.

Wi-Fi Security——Automatic Connection to Wi-Fi

November 24, 2018 | Adeline Zhang

Case AnalysisCase Analysis When finding a bogus Wi-Fi hotspot with the same name as a legitimate one, smartphones also try to connect to it with the stored password. This gives hackers access to legitimate Wi-Fi networks. Security Tips/Takeaways Disable WLAN on smartphones and laptops when Wi-Fi is not used, in case the devices automatically connect […]

Adobe Flash Player Remote Code Execution Vulnerability Threat Alert

November 23, 2018 | Adeline Zhang

Overview On November 20, 2018, local time, Adobe released a security advisory for documenting the remediation of a critical vulnerability in Adobe Flash Player. Successful exploitation of this vulnerability could allow attackers to remotely execute arbitrary code.

Sample Analysis Report

November 22, 2018 | Adeline Zhang

1 Sample Introduction 1.1 Sample Type This sample is a trojan, similar to Satori which is a Mirai variant.

Technical Report on Container Security (II)-3

November 22, 2018 | Adeline Zhang

Container Basics — Container Networking Container Networking From the evolutionary history of cloud computing systems, the industry has reached a consensus that, while constant breakthroughs have been made to drive the maturation of computing virtualization and storage virtualization, network virtualization has lagged behind, becoming a major bottleneck that encumbers the fast growth of cloud computing. […]

Microsoft Released September 2018 Patches to Fix 64 Security VulnerabilitiesThreat Alert

November 19, 2018 | Adeline Zhang

Overview   On Tuesday, Microsoft released September 2018 security updates to fix 64 vulnerabilities, ranging from spoofing attacks to remote code execution vulnerabilities. Affected products include .NET Core, Active Directory, Adobe Flash Player, Azure, BitLocker, Internet Explorer, Microsoft Drivers, Microsoft Dynamics, Microsoft Edge, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft JScript, Microsoft Office, Microsoft Office SharePoint, […]

Adobe September 2018 Security Updates Threat Alert

November 19, 2018 | Adeline Zhang

Overview On November 13, local time, Adobe officially released security bulletins and advisories to announce the remediation of multiple vulnerabilities in such products as Adobe Flash Player, Adobe Acrobat and Reader, and Adobe Photoshop CC.

Wi-Fi Security——Free Wi-Fi Acces

November 17, 2018 | Adeline Zhang

Case AnalysisCase Analysis A malicious actor tends to set up Wi-Fi with a name that is the same as or similar to as a commonly used one, and then set an empty password or the same password as the legitimate Wi-Fi to attract connections from the public. Then the offender will hijack DNS requests on […]

IP Reputation Report-11162018

November 16, 2018 | Mina Hao

Top 10 countries: The above diagram shows the top 10 regions with most malicious IP addresses from the NSFOCUS IP Reputation databases in October. But the United States has the largest allocated IP addresses in the world and China is in the second place. So, report IP Reputation as a percentage of total IP addresses […]

Apache Struts2 Commons FileUpload Deserialization Remote Code Execution Vulnerability (CVE-2016-100031)Threat Alert

November 16, 2018 | Adeline Zhang

Vulnerability Overview Recently, Apache Software Foundation (ASF) has released a security advisory to strongly advise users of Apache Struts2.3.X to upgrade the Apache Commons FileUpload component. Struts 2.3.x, by default, uses the Commons FileUpload component of V1.3.2. Early in 2016, this component of V1.3.2 is disclosed to contain a deserialization vulnerability (CVE-2016-100031) which could result […]