Ano: 2022

Three Transformations of NSFOCUS ADS Solution

outubro 3, 2022

With the continuous transformation of telecommunication infrastructure in recent years, the popularization of 5G technology has promoted the sustainable and rapid growth of network bandwidth resources, and driven the rapid development of technologies such as big data, cloud computing, and the Internet of Things (IoT). However, due to security flaws, a large number of IoT […]

XSS Attack Protection

setembro 30, 2022

Cross-Site Scripting (XSS) attacks are a type of injection in which malicious scripts are injected into otherwise benign and trusted websites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user. Flaws that allow these attacks to […]

APT Group Gamaredon Intensifies Cyber Offensive in Ukraine (Part 2)

setembro 29, 2022

Part 1: APT Group Gamaredon Intensifies Cyber Offensive in Ukraine (Part 1) Type 2: Send malicious HTML attachments by masquerading notification emails The second type of attack activity Gamaredon mainly carried out is spear phishing emails. This is a new attack process that emerged in the second quarter of this year. Gamaredon attackers placed layers […]

APT Group Gamaredon Intensifies Cyber Offensive in Ukraine (Part 1)

setembro 28, 2022

Overview Beginning in the second quarter of this year, NSFOCUS Security Labs discovered that the APT group Gamaredon began frequently using a number of different types of attacks to conduct cyberattacks against military and police targets in Ukraine’s Kherson, Donetsk and other regions. In this attack cycle, Gamaredon mainly used attack tools such as malicious […]

Linux Kernel Privilege Escalation Vulnerability (CVE-2022-2588) Notification

setembro 27, 2022

Overview Recently, NSFOCUS CERT detected that a researcher disclosed an EXP that exists in the Linux kernel privilege escalation vulnerability (CVE-2022-2588) on the Internet. Due to improper operation of the route4_filter linked list, there is a use-after-free vulnerability in the route4_change function of the net/schedule/cls_route.c filter. By exploiting this vulnerability, a local attacker with general […]

APT Group Evilnum Launched a New Round of Cyberattacks on Online Transactions

setembro 26, 2022

Overview NSFOCUS Security Labs detected a string of related phishing attacks recently. The analysis confirmed that these activities were staged by the APT group Evilnum and they were a continuation of the group’s recent operation DarkCasino. This round of cyberattacks occurred in late July and lasted until early August. Evilnum attackers maintained consistent attack methodology […]

Description of the Server Name Indication Feature on NSFOCUS WAF

setembro 22, 2022

The early SSLv2 was designed based on the classic public key infrastructure. By default, a server or an IP address could provide only one service so that the server could know which certificate to serve during the SSL handshake. The widespread use of virtual hosts leads to the situation where multiple domain names are mapped […]

Mind the Sec 2022

setembro 22, 2022

The 8th edition of Mind The Sec was held from September 20 to 22, 2022 at the Transamerica Expo, in São Paulo. it is one of the largest and most qualified corporate events of information security and cyber security in Latin America. Mind The Sec presents three tracks of content, covering from management to technical […]

Security Knowledge Graph | Application in Integration of Functional Safety with Information Security in Industrial Control Systems

setembro 22, 2022

The security knowledge graph, a knowledge graph specific to the security domain, is the key to realizing cognitive intelligence in cyber security, and it also lays an indispensable technological foundation for dealing with advanced, continuous and complex threats and risks in cyberspace. NSFOCUS published a series of articles about the application of the security knowledge […]

MyNOG-9 2022

setembro 21, 2022

MyNOG-9 was held in Kuala Lumpur, Indonesia on September 19, 2022. MyNOG, the Malaysia Network Operators Group, provided a good platform for network operators and experts in other industries who came together to share knowledge, learn about up-to-date technologies, and promote communication and collaboration.  Link to the event: https://www.mynog.org/

Search

Inscreva-se no Blog da NSFOCUS