An Insight into RSAC 2023: Web Application and API Security Trend
junho 15, 2023
At this year’s RSA conference, Akamai Senior Vice President Rupesh Chokshi shared a topic entitled Spotlight on latest web application and API attack data, highlighting the latest web application vulnerabilities and API attack trends. This article will explore this topic, starting from the data trends of application vulnerabilities and API attacks in recent years, describing […]
Fortinet FortiOS SSL VPN Remote Code Execution Vulnerability (CVS 2023-27997)
junho 14, 2023
Overview Recently, NSFOCUS CERT found that Fortinet has officially fixed a remote code execution vulnerability in FortiOS SSL VPN (CVS-2023-27997). Due to the heap-based Buffer overflow error in SSL VPN, an unauthenticated attacker can trigger the vulnerability by sending a specially crafted packet, which can ultimately enable the execution of arbitrary code on the target […]
Illegal Upload Protection
junho 13, 2023
When a client uploads a file to a server, NSFOCUS WAF performs protection based on the file type. If the file type matches an illegal upload restriction policy, NSFOCUS WAF allows or blocks the upload based on the corresponding action specified in the policy, and logs the event. On the Illegal Upload Restriction page, customers […]
Turkey Companies Targeted by RedBeard with Phishing Attacks
junho 12, 2023
I. Summary Recently, NSFOCUS Security Labs observed some phishing attacks targeting Turkish companies, including the Turkish industrial group Borusan Holding, communication operator Turkcell, bank Vakıf Katılım, and online lottery service company Nesine. The attacker placed different types of phishing documents and new Trojan programs in this group of activities to steal file data of the […]
Nacos Raft Protocol Deserialization Code Execution Vulnerability
junho 9, 2023
Overview Recently, NSFOCUS CERT found that there was a deserialization vulnerability in Nacos’s Raft protocol. Due to the Nacos cluster’s unrestricted use of Hessian for deserialization when processing some Jraft requests, attackers can execute code. Affected users should take protective measures as soon as possible. Vulnerability Details Vulnerability PoC Vulnerability EXP Utilization in the wilderness […]
An Insight into RSAC 2023: Lateral Movement in Kubernetes
junho 8, 2023
At the RSA Conference 2023, Yossi Weizman, Senior Security Researcher at Microsoft Defender for Cloud, shared with us the lateral movement of the Kubernetes (aka K8s) cluster and its impact on the cloud environment. Based on Yossi’s speech and NSFOCUS researchers’ understanding, this paper describes the use of lateral movement from the perspective of attack, […]
An Insight into RSAC 2023: 6 Keywords of RSAC 2023
junho 7, 2023
Keyword 1: Stronger Together Alone we can do so little; together we can do so much.” – Helen Keller The theme of this year’s conference is “Stronger Together”. What does “Stronger” mean? What is the specific scope to be “Together”? “Stronger” refers to the ability of the business itself to resist security risks. Although defensive […]
NSFOCUS Lua-based Anti-DDoS Solution
junho 6, 2023
Limitations of Pre-configured DDoS Protection Policies Lots of organizations have realized that DDoS defense is critical to the availability of network infrastructure. But most Anti-DDoS solutions in the market still rely on pre-configured protection policies with multiple threshold options to offer multi-layered protection at different levels. However, this approach has some limitations: Considering these limitations, […]
Will the device restart after importing the license for ADS, ADS M, and NTA?
junho 6, 2023
Upon successful import of the new license: After ADS, NTA, and ADS M are installed, you must import a license before using it. License types vary a bit for hardware devices and virtual devices. Hardware device: License types include Trial, Temporary Sales, and Perpetual. Virtual device (vADS, vNTA, vADSM): License types include Trial, Temporary Sales, […]
NSFOCUS Listed in Gartner® 2023 Market Guide for Security Threat Intelligence Products and Services Again
junho 1, 2023
Santa Clara, Calif. June 1, 2023 – We are proud to announce that NSFOCUS has been included in the Gartner®2023 Market Guide for Security Threat Intelligence Products and Services[1] as a representative vendor for 3 years in a row. According to this report published in May, “Security and risk management leaders struggle to know what […]
