O que é CTEM? Veja os benefícios e como funciona
julho 12, 2025
A segurança cibernética é uma preocupação diária para as empresas de todos os tamanhos. Por isso, o CTEM (Continuous Threat Exposure Management) oferece uma nova e certeira abordagem para o gerenciamento de riscos cibernéticos. Este artigo irá explorar o que é o CTEM, seus benefícios e como ele funciona, além de destacar como a inteligência […]
NSFOCUS AI-Scan for LLM Content Assessment
julho 10, 2025
NSFOCUS AI-Scan detects security risks in large language models through a professionally curated and calibrated advanced risk database. It includes LLM content assessment, adversarial safety assessment and supply chain risk detection functions. In this post we will bring brief for content security assessment features. Create a Task Step 1: AI-Scan supports over 140 commercial and […]
NSFOCUS Anti-DDoS Receives International Recognition: Redefining Anti-DDoS Protection in Asia-Pacific
julho 7, 2025
SANTA CLARA, Calif., July 6, 2025 – Recently, NSFOCUS Anti-DDoS (NSFOCUS ADS) was recognized by the internationally renowned consulting firm Frost & Sullivan and won the 2025 Asia-Pacific “Competitive Strategy Leadership Award for Excellence in Anti-DDoS Protection”[1]. Frost & Sullivan Best Practices Recognition awards companies each year in a variety of regional and global markets for […]
Hpingbot: A New Botnet Family Based on Pastebin Payload Delivery Chain and Hping3 DDoS Module
julho 3, 2025
Overview In June 2025, NSFOCUS Fuying Lab Global Threat Hunting System detected that a new botnet family developed based on Go language was spreading on a large scale, and continued to iterate versions and develop rapidly. We named it “hpingbot” and put it under intensive monitoring. hpingbot is a cross-platform botnet family that supports Windows […]
WebSphere Application Server Remote Code Execution Vulnerability (CVE-2025-36038)
julho 1, 2025
Overview Recently, NSFOCUS CERT detected that IBM issued a security bulletin to fix the WebSphere Application Server remote code execution vulnerability (CVE-2025-36038); Due to a flaw in WebSphere Application Server’ s validation of user-entered data, an unauthenticated attacker could execute arbitrary code on the target system by constructing malicious serialized data. CVSS score 9.0, please […]
O que é Pentest? Entenda os tipos e para que serve
junho 28, 2025
Em um mundo cada vez mais conectado e dependente da tecnologia, a segurança cibernética já se tornou um dos principais pilares para todos os tipos de empresas. Com o aumento constante do cibercrime, é crucial adotar medidas proativas para proteger informações sensíveis e garantir a integridade dos negócios. Diante disto, o Pentest surge como uma […]
NSFOCUS APT Monthly Briefing – May 2025
junho 27, 2025
Regional APT Threat Situation In May 2025, the global threat hunting system of Fuying Lab discovered a total of 44 APT attack activities. These activities are mainly distributed in South Asia, Eastern Europe, East Asia, West Asia, Southeast Asia and as shown in the following figure. In terms of group activity, the most active APT […]
The Hacktivist Cyber Attacks in the Iran-Israel Conflict
junho 26, 2025
Overview of the current cyber attacks in the Iran-Israel conflict The geopolitical confrontation between Iran and Israel has a long history. In recent years, as the competition between the two countries in the military, nuclear energy and diplomatic fields has been escalating. On June 13, 2025, the IDF launched a large-scale military operation against Iran. […]
Gogs Remote Command Execution Vulnerability (CVE-2024-56731)
junho 26, 2025
Overview Recently, NSFOCUS CERT detected that Gogs issued a security bulletin and fixed the Gogs remote command execution vulnerability (CVE-2024-56731); Due to the incomplete CVE-2024-39931 fix, an authenticated attacker can delete files in the .git directory through symbolic links and execute arbitrary commands on the Gogs instance using the account permissions specified by RUN_USER in […]
NSFOCUS was Selected as a Representative Provider of Gartner® “Innovation Insight: Adversarial Exposure Validation in China”
junho 24, 2025
SANTA CLARA, Calif., June 24, 2025 – Recently, Gartner released the 2025 “Innovation Insight: Adversarial Exposure Validation in China”¹, NSFOCUS was selected as a Representative Provider for its adversarial exposure validation (AEV) capability in the continuous threat exposure management (CTEM) service. Why has ASM become a pain point for enterprises? Asset data is scattered and lacks […]
