NSFOCUS Remote Security Assessment Security (RSAS) is a specialized, all-encompassing vulnerability scanner tailored for clients performing security assessments. It is adept at swiftly identifying a full spectrum of weaknesses within network systems. NSFOCUS RSAS is not just a scanning tool; it's a comprehensive solution that efficiently identifies a plethora of...
Autor: NSFOCUS
O que é segurança cloud? Como funciona o Cloud Security
Com o aumento do armazenamento e processamento de dados na nuvem, proteger informações sensíveis tornou-se uma preocupação crucial para indivíduos e empresas. Neste artigo, mergulharemos no conceito de segurança cloud e exploraremos como o Cloud Security funciona para garantir a proteção dos dados. Conheça mais sobre os mecanismos de segurança...
Use ADS Programmable Rules to Customize Protection Capabilities
This document will guide you through the process of leveraging programmable rules in ADS to customize your protection capabilities. Unlike static solutions, the programmable defense allows you to create custom rules and policies that respond to attacks in real time, providing more precise and effective protection. NSFOCUS ADS has incorporated...
Lessons Learned from the CrowdStrike Incident: Strengthening Organizational Resilience
On July 19, 2024, a major global digital catastrophe unfolded as a faulty Windows update led by cybersecurity firm CrowdStrike's Falcon software caused widespread system crashes and service disruptions across vital sectors in over 20 countries. This incident has exposed the deficiencies of Microsoft and its partners in product stability...
TransparentTribe’s Spear-Phishing Targeting Indian Government Departments
Overview Leveraging our global threat hunting system, NSFOCUS Security Research Labs discovered spear-phishing email attacks by the APT group TransparentTribe targeting Indian government departments on February 2, 2024. The timing of these attacks coincides with the presidential election in India, scheduled for April-May of this year, and the bait documents...
JumpServer File Read and Upload Vulnerability (CVE-2024-40628/CVE-2024-40629) Notification
Overview Recently, NSFOCUS CERT detected that JumpServer issued a security announcement and fixed the file reading and uploading vulnerabilities in JumpServer (CVE-2024-40628/CVE-2024-40629). Due to improper permission configuration of the Ansible module in JumpServer, an attacker with a low-privilege account can use the ansible playbook to read arbitrary files in the...
