Overview NSFOCUS received acknowledgments from the Microsoft Security Response Center (MSRC) for reporting Azure Database Service RCE Vulnerability. Azure Database for PostgreSQL – Flexible Server is a relational database service based on the open-source PostgreSQL database engine. It is a fully managed database-as-a-service that can handle mission-critical workloads, offering predictable performance, security, high availability, and dynamic […]

NSFGPT is a large security model tailored for the security industry, based on the Security Large Language Model (SecLLM) as the core technology, and combining NSFOCUS’s 20 years of expertise in network security and 10 years of experience in AI security research and practice. It leverages a massive amount of professional security knowledge to train, […]

Cybersecurity is crucial for national security in the digital world, where major powers clash over their interests. However, technology also enables more sophisticated and harmful network attacks. One of the most common and dangerous types of attacks is distributed denial-of-service (DDoS), which can hide, coordinate, and scale up to overwhelm a target. DDoS attacks threaten […]

Introduction Network Detection and Response (NDR) has become a cornerstone in modern cybersecurity, offering a proactive approach to identifying and mitigating potential threats in real time. NSFOCUS, a global security vendor in cybersecurity, places significant emphasis on NDR with its product Unified Threat Sensor (UTS). NSFOCUS UTS stands out as a strategic product, driving NSFOCUS […]

SANTA CLARA, Calif., February 14, 2024 –  In a recent announcement, the IPv6 Forum bestowed the prestigious 2023 IPv6 Pioneer Enterprise Awards, recognizing leaders in the adoption and advancement of IPv6 technologies. NSFOCUS proudly accepted two distinguished accolades:  the “2023 IPv6 Innovation Product Award” and the “2023 Product IPv6 Support Excellent Award in the ICS […]

In 2023, countries worldwide continued to strengthen their cybersecurity capabilities and systems in response to their national needs, using regulatory means to enhance their cybersecurity management. Based on continuous tracking and research, NSFOCUS summarized the development of global cybersecurity regulations and policies in 2023, hoping to provide valuable insights and guidance for stakeholders, policymakers, and […]

This article introduces the concept of Continuous Threat Exposure Management (CTEM), delving into the philosophy behind CTEM, its five stages, and exploring key technologies that support its implementation. I.      Introduction In mid-October 2023, Gartner released the top 10 strategic technology trends for 2024 that enterprises need to explore, as depicted in Figure 1. Gartner categorized these trends into three […]

In 2023, countries worldwide continued to strengthen their cybersecurity capabilities and systems in response to their national needs, using regulatory means to enhance their cybersecurity management. Based on continuous tracking and research, NSFOCUS summarized the development of global cybersecurity regulations and policies in 2023, hoping to provide valuable insights and guidance for stakeholders, policymakers, and […]

Overview Recently, NSFOCUS CERT detected that the runc officially issued a security notice and fixed a container escaping vulnerability (CVE-2024-21626). Since the internal file descriptor of runc is leaked during initialization and the final working directory is not verified to be located in the mount namespace of the container, attackers can conduct container escaping in […]

In 2023, countries worldwide continued to strengthen their cybersecurity capabilities and systems in response to their national needs, using regulatory means to enhance their cybersecurity management. Based on continuous tracking and research, NSFOCUS summarized the development of global cybersecurity regulations and policies in 2023, hoping to provide valuable insights and guidance for stakeholders, policymakers, and […]