With the outbreak of the COVID-19 pandemic around the world, trending hashtags related to the epidemic are flooding social media, attracting attention of a number of international hacker organizations, which jump at the chance to conduct social engineering based on decoy messages. Recently, NSFCOUS found that NetWire controllers began to...
Category: Blog
Firmware Analysis: Extraction of ASP Files in the GoAhead Architecture
GoAhead is an open-source web architecture that is widely used in embedded systems thanks to its high performance and high availability. Traditional servers built on the GoAhead architecture usually see a large number of dynamic pages written in the Active Server Pages (ASP) scripting language and functions written in C/C++...
IP Reputation Report-05102020
1. Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at May 10, 2020. 2. Top 10 countries in attack percentage: The Belarus is in first place.The Cape Verde is in the second...
DDoS Attack Landscape 7
Attack Gang Size Gang Size Figure 3-27 shows the distribution of our identified IP gangs by size. Two gangs consist of over 10,000 members and the largest gang has 88,000 members. (more…)
Jenkins Plug-in Multiple Vulnerabilities Threat Alert
Vulnerability Description On May 6, Jenkins released a security bulletin to announce the fix of nine vulnerabilities in five plug-ins. The SCM Filter Jervis plug-in contains a remote code execution vulnerability (CVE-2020-2189) which is officially identified as high-risk. As the SCM Filter Jervis plug-in does not configure its YAML parser...
Adobe Out-of-Band Patch Tackling Critical Vulnerabilities in Multiple Products Threat Alert
Overview On April 28, local time, Adobe released an out-of-band patch tackling multiple vulnerabilities in Magento, Adobe Illustrator, and Adobe Bridge. For details about the security bulletins and advisories, visit the following link: https://helpx.adobe.com/security.html (more…)
