Smart Cybersecurity Summit Thailand, May 24, 2023, Queen Sirikit National Convention Centre, Bangkok NSFOCUS, a leading provider of network security solutions and services, exhibited at Smart Cybersecurity Summit Thailand 2023 in Bangkok as Silver Sponsor, organized by Cyber Security World on May 24, 2023. NSFOCUS team presented our solutions and...
Blog
Pay Attention to New SLP Vulnerability That May Lead to Massive DDoS Amplification Attacks
A new reflective Distributed-Denial-of-Service (DDoS) amplification vulnerability was recently discovered in the Service Location Protocol (SLP), which allows attackers to achieve a high amplification factor of over 2,200 times. This vulnerability has been identified as CVE-2023-29552, potentially making it one of the largest amplification attacks ever recorded. SLP is a...
How to Power Off ADS M Portal Properly
To ensure proper shutdown of the ADS M Portal, it is recommended to synchronize memory data with the hard disk before initiating a shutdown. The command for this is sync. Failure to do so may result in data loss. After synchronization, you may proceed with the shutdown command for power...
Linux Kernel Privilege Escalation Vulnerability (CVS 2023-32233) Notice
Overview Recently, NSFOCUS CERT found that the PoC of Linux Kernel privilege escalation vulnerability (CVE-2023-32233) was publicly disclosed online. There is a use-after-free vulnerability in Linux kernel's subsystem Netfilter nf_tables, which can be exploited by authenticated local attackers to perform arbitrary read and write operations in kernel memory, ultimately elevating...
Retrospective of Insights at RSAC 2023: The Secret Life of Enterprise Botnets
Secret Life of Enterprise Botnets The Secret Life of Enterprise Botnets is a speech in a session of RSA Conference 2023 by Dr. Craig Labovitz, Head of Technology for the Deepfield business unit at Nokia. In collaboration with global Internet providers, researchers tracked more than 500,000 compromised enterprise servers, security...
Configuring TCP Flood Protection on NSFOCUS WAF
According to the working principle of TCP/IP, only a certain amount of TCP/IP connections are allowed. Attackers exploit this to launch TCP flood attacks, which are divided into two types: SYN flood attacks An attacker sends too many SYN packets to a target server for processing, exhausting the server's resources...
