Overview On December 11, 2018 (local time), Adobe released security updates which address multiple vulnerabilities in Acrobat and Reader. (more…)
Blog
Cyber security predictions roundup for 2019
IT WORLD CANADA - Criminals using artificial intelligence. More nation-state backed attacks. The Internet held hostage. Dangerous chatbots. President Trump’s cellphone will be hacked. And, of course, more malware. These are some of the predictions security vendors see coming in the next 12 months. It’s not a pretty picture, but...
New Satan Variants Target Financial Sector With Monero Miners and Ransomware
SecurityIntelligence - Researchers spotted two Satan variants targeting organizations in the financial sector with Monero miners and ransomware. The first variant of the malware, which security solutions provider NSFOCUS spotted in early November, targets Linux and Windows systems and spreads by exploiting various application vulnerabilities. After establishing a foothold into...
IP Reputation Report-12212018
Top 10 countries: The above diagram shows the top 10 regions with most malicious IP addresses from the NSFOCUS IP Reputation databases at December 21, 2018. But the United States has the largest allocated IP addresses in the world and China is in the second place. So, report IP Reputation...
NSFOCUS’s Presence at Botconf 2018
On December 7, 2018 security experts from NSFOCUS Fu Ying Labs delivered a speech at Botconf 2018, presenting WASM security threat analysis technologies with researchers from security firms, media personnel, and security practitioners from CERTs (Computer Emergency Response Teams) of various countries. Their striking insights were highly accepted and acknowledged...
ThinkPHP Remote Code Execution Vulnerability Handling Guide
1 Vulnerability Overview Recently, ThinkPHP posted a blog, announcing the release of an update that addresses a high-risk remote code execution (RCE) vulnerability. This vulnerability stems from the framework's insufficient checks on controller names, which, in case forced routing is not enabled, would allow arbitrary code execution or even access...
