The Undercurrent Behind the Rise of DeepSeek: DDoS Attacks in the Global AI Technology Game
janeiro 31, 2025
Background The rise of DeepSeek is undoubtedly a milestone in the development of AI technology in China. As a representative AI enterprise, DeepSeek has not only made breakthrough progress in technological innovation and commercial application, but also demonstrated the outstanding strength and great potential of Chinese technology enterprises in the global AI competition. However, as […]
Security Risks of Low-altitude Economy
janeiro 28, 2025
The low-altitude economy is becoming an important force to promote economic growth by virtue of its innovative ability and huge development potential. From UAV logistics distribution to urban air traffic, from emergency rescue to aerial photography and mapping, the application scenarios of low-altitude economy have been continuously expanded, and the market scale has been expanding […]
O que é Privacidade de dados? Veja como proteger sua empresa
janeiro 24, 2025
A era digital trouxe uma explosão no volume de dados gerados, coletados e armazenados diariamente. Esse cenário levanta questões críticas sobre a privacidade de dados, que se tornou um tópico central nas discussões empresariais e legislativas. Neste artigo, exploraremos o mundo da privacidade de dados, sua importância, a relação com a LGPD (Lei Geral de […]
Oracle WebLogic Server Remote Code Execution and Denial of Service Vulnerability (CVE-2025-21535/CVE-2025-21549)
janeiro 23, 2025
Overview Recently, NSFOCUS CERT detected that Oracle has released a security announcement, in which the remote code execution and denial of service vulnerabilities of Oracle WebLogic Server have been fixed. Affected users should take protective measures as soon as possible. CVE-2025-21535: When the T3/IIOP protocol is enabled, an unauthenticated attacker sends a special request to […]
NSFOCUS Licensed for SOC and Pentest Service in Malaysia in Accordance with Cyber Security Act 2024
janeiro 23, 2025
Santa Clara, Calif. January 23, 2025 – NSFOCUS, a global provider of intelligent hybrid security solutions, today announced that it has received two security service licenses from the National Cyber Security Agency (NACSA) of Malaysia, being one of the first licensed companies that can provide two crucial services in Malaysia: Managed SOC (Security Operations Center) […]
MongoDB Mongoose Search Injection Vulnerability (CVE-2025-23061)
janeiro 21, 2025
Overview Recently, NSFOCUS CERT detected a security announcement issued by GitHub that fixed a search injection vulnerability (CVE-2025-23061) in Mongoose, which is an incomplete fix for CVE-2024-53900. Because Mongoose incorrectly handles the $where filter with match conditions in the populate() method, an unauthenticated attacker can manipulate a search injection when both queries are used, resulting […]
NSFOCUS Included in External Threat Intelligence Service Providers Landscape Q1 2025
janeiro 20, 2025
Santa Clara, Calif. January 20, 2025 – NSFOCUS, a global provider of intelligent hybrid security solutions, announced that it has been included in the Forrester report, The External Threat Intelligence Service Providers Landscape, Q1 2025 among Notable Providers recently. This is the second time for NSFOCUS to be included in this report, as we have […]
Rsync Buffer Overflow and Information Disclosure Vulnerability (CVE-2024-12084/CVE-2024-12085) Notification
janeiro 17, 2025
Overview Recently, NSFOCUS detected that Rsync issued a security announcement and fixed the buffer overflow and information leakage vulnerabilities in Rsync (CVE-2024-12084/CVE-2024-12085). The combination of the two vulnerabilities can realize remote code execution. Please take measures to protect them as soon as possible. CVE-2024-12084: There is a heap buffer overflow vulnerability in the Rsync daemon. […]
O que é Ransomware? Definição, prevenção e remoção
janeiro 16, 2025
O termo ransomware é um tema frequente nas discussões sobre segurança cibernética. Trata-se de um tipo de malware que pode causar sérios danos a indivíduos e organizações, restringindo o acesso a dados vitais e sistemas inteiros. Neste artigo, vamos entender o que é ransomware, mitigações e formas de assegurar sua exposição. Continue a leitura! O […]
Inteligência Artificial nas Empresas: Quais Cuidados Adotar?
janeiro 16, 2025
A Inteligência Artificial (IA) tem se tornado uma ferramenta essencial no dia a dia das empresas, revolucionando processos, melhorando a eficiência e oferecendo soluções inovadoras. No entanto, a implementação dessa tecnologia não vem sem desafios. Embora a IA traga benefícios consideráveis, é crucial que as empresas adotem precauções para garantir que seu uso seja seguro, […]
