NSFOCUS – Nextwave (Thailand) Partner Event
novembro 11, 2022
Wednesday 2 Nov 2022 at Glowfish Together with Nextwave, NSFOCUS held the partner event Future Defense-in-Depth Security and Beyond. Apart from Anti-Distributed Denial of Service System (ADS) that NSFOCUS has experience for over 20 years, other Defense Security also have been developed to meet the needs of customers for both On-Prems, Cloud and Hybrid Security. […]
NSFOCUS Gains CREST Accreditation for Penetration Test Service
novembro 10, 2022
Santa Clara, Calif. November 10, 2022 – NSFOCUS, a global provider of intelligent hybrid security solutions, today announced it has received CREST’s internationally recognized accreditation for its Penetration Test services, an addition to its existing accreditation for the vulnerability assessment service. CREST uses a rigorous quality assurance process to ensure its member companies are accredited and quality […]
Cyber Defense Initiative Conference (CDIC) 2022
novembro 10, 2022
During November 9th to 10th, NSFOCUS participated in Cyber Defense Initiative Conference (CDIC) in Thailand. Our experts Orajit Jamsai and Krittipol Hirunmaporn presented our hybrid Anti-DDoS solution and cloud security services during these 2 days. It was an amazing event for us to connect with Thailand’s cybersecurity community.
The Increasing Trend of Software Supply Chain Attacks
novembro 8, 2022
Compared with traditional security threats, supply chain threats have a spreading influence. Vulnerabilities of upstream products will affect all downstream roles, causing security risks to spread along the supply chain and consequently expanding the attack area. In recent years, several influential supply chain attacks have taken place, involving open-source components, public code repositories, and cloud […]
NSFOCUS Partner Summit 2022
novembro 6, 2022
NSFOCUS LATAM team held #PartnerSummit2022 in partnership with CLM, where we met with major partners and distributors to celebrate the success we have achieved throughout this year.We spent an amazing night fulfilled with good talks, laughter, exchange of experiences, wine tasting, raffle of gifts and awards for companies that stood out in 2022.
Spring Security Authentication Bypass Vulnerability (CVE-2022-31692) Notice
novembro 4, 2022
Overview Recently, NSFOCUS CERT found that the PoC of the Spring Security authentication bypass vulnerability (CVE-2022-31692) was publicly disclosed online. Due to improper authorization flaws, under certain conditions, an unauthenticated remote attacker can use FORWARD or INCLUDE for forwarding, thereby exploiting the vulnerability to bypass the authorization rules and ultimately achieve authentication bypass. At present, […]
OpenSSL Multiple Buffer Overflow Vulnerability Notice
novembro 2, 2022
Overview On November 2, 2022, NSFOCUS CERT detected that openssl officially released a security notice and fixed multiple buffer overflow vulnerabilities in OpenSSL. OpenSSL is an open source software library package. Applications can use this package to communicate securely, avoid eavesdropping, and confirm the identity of the other end of the connection. It is widely […]
Threats against Software Supply Chain Security
novembro 1, 2022
In the last post of this series, we had an overview of software supply chain security and summarized some observations during the research. You can read the previous post here. In this post, we’re going to talk about the threats faced by the software supply chain. Globalized economic development has brought more opportunities and […]
Google Chrome Remote Code Execution Vulnerability (CVE-2022-3723) Alert
outubro 31, 2022
Overview Recently, NSFOCUS CERT monitored that Google Chrome has officially released a security bulletin and fixed a remote code execution vulnerability in Chrome V8 (JavaScript engine). Due to a type confusion vulnerability in Chrome V8, a remote attacker could exploit the vulnerability to execute arbitrary code on the target system. At present, the official has […]
Introduction of RESTful APIs for NIPS Version 5610 and 5611
outubro 28, 2022
A RESTful API means that API works in REST standard. RESTful API requires the front end to send requests in one predefined format, so the server only needs to use one unified interface to process. NSFOCUS NIPS can use RESTful API to get the device information or change settings. API tools need to be authorized […]
