Overview Recently, US officials claimed to have successfully gained control of RapperBot, effectively curbing this powerful source of DDoS attacks. The operation pinpointed the key figure behind the botnet, Ethan Foltz. According to the investigation, Foltz has been developing and operating RapperBot since 2021, with his residence in Eugene, Oregon,...
Category: Blog
Microsoft’s August Security Update High-Risk Vulnerability Notice for Multiple Products
Overview On August 13, NSFOCUS CERT detected that Microsoft released the August Security Update patch, which fixed 111 security issues involving widely used products such as Windows, Microsoft Office, Microsoft SQL Server, Visual Studio, and Microsoft Exchange Server. These include high-risk vulnerability types such as privilege escalation and remote code...
O que é Data Leakage? Veja como as empresas devem se prevenir
A segurança da informação é um dos pilares essenciais para qualquer organização que lida com dados sensíveis. Se você trabalha com tecnologia, gestão de dados, compliance ou é responsável por processos de segurança digital, este conteúdo é para você. Saber o que é data leakage e como evitá-lo é fundamental...
NSFOCUS Monthly APT Insights – June 2025
Regional APT Threat Situation In June 2025, the global threat hunting system of Fuying Lab detected a total of 33 APT attack activities. These activities were mainly distributed in regions such as South Asia, East Asia, West Asia, Eastern Europe, and South America, as shown in the figure below. In...
Cursor Remote Code Execution Vulnerability (CVE-2025-54135)
Overview Recently, NSFOCUS CERT detected that Cursor issued a security bulletin and fixed the Cursor remote code execution vulnerability (CVE-2025-54135); Because Cursor allows files to be written to the workspace without user approval, when an external Model Control Protocol (MCP) server is configured through the Cursor user interface, an attacker...
NSFOCUS WAF New Version: Intelligent Asset Self-Identification, Synchronizing Security Protection with Business Growth
Customer Pain Points “Gap†in security protection after new business launch A financial company launched a new business system; the O&M team had to manually add the server IP to the WAF whitelist. Due to the cumbersome approval process, the configuration was not completed until 3 days later. During this...
