EDR Security: O que é Detecção e Resposta de Endpoint?
dezembro 28, 2023
Em um mundo cada vez mais digital, a segurança cibernética já é uma necessidade. E uma das tecnologias emergentes nesse campo é a Detecção e Resposta de Endpoint (EDR). Por isso, criamos este conteúdo a fim de desmistificá-lo, explicando desde a sua definição até os principais recursos e como a tecnologia pode ser um diferencial […]
Introduction to NTA Automatic Diversion
dezembro 28, 2023
NTA supports configuring automatic diversion for Region/IP Group traffic alerts and Region/IP Group DDoS attack alerts. There are different diversion methods for various scenarios, including ADS Diversion, Flowspec Diversion, BGP Diversion, and Null-Route Diversion For the Region/IP Group traffic alert, the following conditions must be met to perform automatic diversion after the alert is triggered: […]
NSFOCUS Zero Trust Solution Makes It Into The Security Service Edge Solutions Landscape Report
dezembro 27, 2023
SANTA CLARA, Calif., Dec 27, 2023 – NSFOCUS, a global provider of intelligent hybrid security solutions, today announced that NSFOCUS is included in the Security Service Edge Solutions Landscape for Q4 2023 recently published by Forrester, an internationally authoritative research and consulting firm. Forrester believes that security service edge (SSE) solutions can provide Zero Trust […]
OpenSSH Command Injection Vulnerability (CVE-2023-51385) Alert
dezembro 27, 2023
Overview Recently, NSFOCUS CERT detected that OpenSSH released a security update and fixed a command injection vulnerability caused by malicious shell characters (CVE-2023-51385), with a CVSS score of 9.8; Since there is no security filtering of username and hostname input represented by %h,%u in OpenSSH’s ProxyCommand command, command injection may occur if the username or […]
Apache OFBiz Arbitrary File Reading and Remote Code Execution Vulnerabilities (CVE-2023-50968/CVE-2023-51467) Alert
dezembro 27, 2023
Overview Recently, NSFOCUS CERT detected that Apache officially released a security announcement and fixed two high-risk vulnerabilities in Apache Ofbiz. CVE-2023-50968: Due to problems in Apache Software Foundation, unauthorized attackers can read files and carry out SSRF attacks when operating uri calls; CVE-2023-51467: Due to a privilege verification logic error in Apache Ofbiz, an attacker […]
Introduction to NSFOCUS WAF SNMP
dezembro 22, 2023
Simple Network Management Protocol (SNMP) is an application-layer protocol that transmits management data between network devices. SNMP belongs to the Transmission Control Protocol/Internet Protocol (TCP/IP) family and is one of the most widely used network protocols for managing and monitoring network components across a variety of industries. The majority of network components come with an […]
NSFOCUS Recognized as One of Representative SOAR Vendors in Frost & Sullivan’s Report
dezembro 21, 2023
SANTA CLARA, Calif., Dec 21, 2023 – NSFOCUS proudly announces its recognition in Frost & Sullivan’s latest report Insights for CISOs: Modernizing Security Operations Centers with Security Orchestration and Automated Response as a representative vendor. This insightful report delves into the growth environment, enterprise application value, SOAR solution benefits, the vendor ecosystem, and growth opportunities […]
xorbot: A Stealthy Botnet Family That Defies Detection
dezembro 18, 2023
I. Background of xorbot In November 2023, NSFOCUS Global Threat Hunting System detected that a type of elf file was being widely distributed and accompanied by a large amount of suspected encrypted outbound communication traffic. However, the detection rate of mainstream antivirus engines on this file was close to zero, which aroused our curiosity. After further […]
Hong Kong Cybersecurity Symposium 2023
dezembro 15, 2023
Cybersecurity Symposium 2023, Dec 14, Convention Hall @Hong Kong Convention and Exhibition Centre, Hong Kong The Cybersecurity Symposium is co-organised by the Office of the Government Chief Information Officer (OGCIO) and Hong Kong Internet Registration Corporation Limited (HKIRC). It aims to unite quangos, enterprises and other local organizations in Hong Kong to address the cybersecurity challenges of the digital […]
O que é XDR? Veja como funciona
dezembro 12, 2023
No complexo mundo da cibersegurança, a detecção e resposta estendidas, que também pode ser chamada de XDR, emergem como uma solução eficaz. Continue a leitura para entender o que é, como funciona e por que as empresas estão recorrendo a essa abordagem inovadora para proteger suas operações contra ameaças digitais. O que é detecção e […]
