In 2025, NSFOCUS Fuying Lab disclosed a new APT group targeting China’s scientific research sector, dubbed “ChainedShark” (tracking number: Actor240820). Been active since May 2024, the group’s operations are marked by high strategic coherence and technical sophistication. Its primary targets are professionals in Chinese universities and research institutions specializing in international relations, marine technology, and related […]

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application running in the form of a chatbot, it allows users to input natural language commands through Web pages and IM tools (such as Telegram, Slack, Discord, etc.) to achieve […]

In 2025, the global cybersecurity situation continued to deteriorate, with a significant rise in the use of 0-day vulnerabilities in Advanced Persistent Threat (APT) attacks, which became a key driver of accelerating threats. Numerous 0-day vulnerabilities were exploited in operating systems, browsers, network devices, and security software, enabling attackers to bypass defenses for extended periods […]

A tecnologia avançou muito nos últimos anos e, com isso, as pessoas têm acesso a muitos recursos e aplicações que melhoram a vida de todos.  Um desses recursos são as aplicações web, que estão ficando cada vez mais comuns.  Essas aplicações web são criadas usando linguagens de programação como HTML, JavaScript e outras tecnologias para […]

AI Penetration Testing System (AI-PTS) Leveraging AI to empower penetration testing, the AI-PTS integrates AI technology with traditional penetration testing methods. It delivers an AI+ defense system tailored for real-world attack scenarios. The AI-PTS is designed to help security professionals conduct non-destructive security assessments for networks, systems, and applications, significantly improving testing efficiency and quality. […]

Background As LLMs and intelligent agents expand from dialogue to task execution, the encapsulation, reuse and orchestration of LLM capabilities have become key issues. As a capability abstraction mechanism, Skills encapsulates reasoning logic, tool calls and execution processes into reusable skill units, enabling the model to achieve stable, consistent and manageable operations when performing complex […]

Regional APT Threat Situation In December 2025, the global threat hunting system of Fuying Lab detected a total of 24 APT attack activities. These activities were primarily concentrated in regions including South Asia, East Asia, with a smaller portion also found in Eastern Europe and South America. Some organizations remain unattributed to known APT groups, […]

SANTA CLARA, Calif., Jan 29, 2026 – Security is a prerequisite for the application and development of LLM technology. Only by addressing security risks when integrating LLMs can businesses ensure healthy and sustainable growth. NSFOCUS first proposed the AI LLM Risk Threat Matrix in 2024. The Matrix addresses security from multiple perspectives: foundational security, data security, […]

Estar protegido contra malwares é fundamental devido às constantes ameaças que rondam o mundo digital. Mas você sabe o que é um malware? Quais os tipos que existem? E, principalmente, como proteger o seu negócio contra possíveis ataques? Continue a leitura e fortaleça a segurança dos dados para garantir uma boa experiência na era digital. […]

As AI applications fully embrace the cloud, emerging components and complex supply chains—while offering convenience—have also led to a sharp rise in risks from configuration flaws and vulnerability exploitation, making the AI security landscape in the cloud increasingly severe. In response to this trend, NSFOCUS conducted analysis of 48 typical global data breach incidents in […]