Blog

Confluence Local File Disclosure Vulnerability (CVE-2019-3394) Handling Guide

September 24, 2019 | Mina Hao

Vulnerability Description Recently, Atlassian released a security advisory, announcing remediation of a local file disclosure vulnerability (CVE-2019-3394) in Confluence products.

NSFOCUS 2018 Annual Report on Cybersecurity Incident Observations

September 23, 2019 | Mina Hao

1 Introduction According to the Statistical Report on China’s Internet Development[①] released by China Internet Network Information Center (CNNIC) in February 2019, China’s online population had reached 829 million, with an Internet penetration rate of 59.6%, by the end of 2018. The Internet has shown its presence in every segment of national economy, with a […]

Multiple Cisco Products Contain Critical Vulnerabilities Threat Alert

September 20, 2019 | Mina Hao

Overview On August 21, 2019, local time, Cisco officially released multiple security advisories, announcing remediation of critical vulnerabilities in a number of products. These vulnerabilities include authentication bypass and remote code execution vulnerabilities and the most critical one gets a CVSS score of 9.8.

IP Reputation Report-09152019

September 19, 2019 | Mina Hao

Top 10 countries in attack counts:

Botnet Trend Report-14

September 18, 2019 | Mina Hao

Conclusion and Recommendations In 2018, botnets continued using DDoS as their primary weapon to attack regions with ubiquitous high speed networking for direct economic gains. However, they underwent significant changes in behavioral patterns, host platforms, C&C server deployment, infection methods, attack methods, and payload types. Security service providers need to adapt their strategies to better […]

Aspose Remote Code Execution Vulnerabilities (CVE-2019-5032/5033/5041) Threat Alert

September 17, 2019 | Mina Hao

Overview Recently, Cisco Talos published several technical analysis reports, claiming that Aspose.cells and Aspose.words in Aspose products contain remote code execution vulnerabilities, which can be exploited via a maliciously crafted file to result in remote code execution.

Computrace That Is Whitelisted Can Pose Hybrid Threats

September 16, 2019 | Mina Hao

Recently, an article titled “Tips for Security Risks of Anti-theft and Tracking Software from Absolute” has been widely circulated on the internet, sparking public debate on the software LoJack for Laptops developed by Absolute. This software in question is also known as Computrace, with features including the abilities to remotely lock, delete files from, and […]

Information Security in the Workplace- Entry of outsiders2

September 14, 2019 | Mina Hao

With the advancement of IT-based transformation and the rapid development of IT, various network technologies have seen more extensive and profound applications, along with which come a multitude of cyber security issues. Come to find out what information security issues you should beware of in the workplace.

Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability (CVE-2019-12643) Threat Alert

September 13, 2019 | Mina Hao

Overview On August 28, 2019, local time, Cisco released a security advisory, announcing remediation of an authentication bypass vulnerability (CVE-2019-12643) in the Cisco REST API virtual service container for Cisco IOS XE Software.

IP Reputation Report-09012019

September 12, 2019 | Mina Hao

Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at September 08, 2019.   Top 10 countries in attack percentage: The Laos is in first place. The Palestine is in the second place. The country China (CN) is […]