Microsoft Released October Patches to Fix 61 Security Vulnerabilities
outubro 26, 2019
Overview
Microsoft released the October security update patch on Tuesday, fixing 61 security issues ranging from simple spoofing attacks to remote code execution. Products include Azure, Internet Explorer, Microsoft Browsers, Microsoft Devices, Microsoft Dynamics, Microsoft Edge, Microsoft Graphics Component. , Microsoft JET Database Engine, Microsoft Office, Microsoft Office SharePoint, Microsoft Scripting Engine, Microsoft Windows, Open Source Software, Secure Boot, Servicing Stack Updates, SQL Server, Windows Hyper-V, Windows IIS, Windows Installer, Windows Kernel, Windows NTLM , Windows RDP and Windows Update Stack.
(mais…)
Information Security in the Workplace- Data Backup-v
outubro 25, 2019
With the advancement of IT-based transformation and the rapid development of IT, various network technologies have seen more extensive and profound applications, along with which come a multitude of cyber security issues. Come to find out what information security issues you should beware of in the workplace.
IP Reputation Report-10202019
outubro 24, 2019
Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at October 20, 2019. Top 10 countries in attack percentage: The Laos is in first place. The Uzbekistan is in the second place. The country China (CN) is not […]
Cybersecurity Insights-1
outubro 23, 2019
Executive Summary
It has been 31 years since China sent its first email to the world on September 14, 1987, thus triggering the development of the Internet in the country. From the Consumer Internet and the Industrial Internet to the Internet of Things, the Internet has been increasingly changing the way we communicate and do business and has reshaped the economic form of the country and expanded people’s living boundaries repeatedly. At the same time, the number of netizens in China reached 802 million, with an Internet penetration rate of 57.7%1(as of June 2018). The Internet has in fact become a necessity in the country’s economy and in people’s lives. As a result, the importance of cybersecurity has become even more apparent. (mais…)
Joomla! Content Management System Remote Code Execution Vulnerability Threat Alert
outubro 22, 2019
Overview
Recently, security researcher Alessandro Groppo posted a blog about a remote code execution vulnerability in the early version of the content management system Joomla!. The vulnerability is a remote code execution caused by a PHP object injection discovered by researchers in the Joomla! CMS 3.0.0. to 3.4.6 (released from September 2012 to December 2015). The vulnerability POC has been released. (mais…)
Oracle October 2019 Critical Patch Update for All Product Families Threat Alert
outubro 21, 2019
Overview
On October 15, 2019, local time, Oracle released its own security advisory and third-party security advisories for its October 2019 Critical Patch Update (CPU) which fixes 240 vulnerabilities of varying severity levels across the product families. For details about affected products and available patches, visit the appendix. (mais…)
vBulletin Remote Code Execution Vulnerability (CVE-2019-16759) Threat Alert
outubro 18, 2019
Overview
vBulletin is a powerful, scalable, and fully customizable forums package. Despite being a commercial product, vBulletin is still the most popular web forums package, whether from the market share or the actual installations. (mais…)
IP Reputation Report-10132019
outubro 17, 2019
Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at October 13, 2019. Top 10 countries in attack percentage: The Laos is in first place. The Uzbekistan is in the second place. The country China (CN) is not […]
Harbor Remote Privilege Escalation Vulnerability (CVE-2019-16097) Threat Alert
outubro 16, 2019
Overview
Harbor is an open-source project from VMware and an enterprise-class registry server that stores and distributes Docker container images. It adds some functionalities required by enterprises such as security, identity, and management. (mais…)
Microsoft Internet Explorer Remote Code Execution Vulnerability (CVE-2019-1367) Threat Alert
outubro 15, 2019
1 Vulnerability Description
On September 23, local time, Microsoft released cumulative security updates for the Internet Explorer (IE), fixing a remote code execution vulnerability (CVE-2019-1367) in IE. This vulnerability exists in the way the IE’s script engine handles objects in memory. By tricking a user into accessing a crafted website through IE, an attacker could exploit this vulnerability to execute arbitrary code to finally gain control access to the system. (mais…)
