1. Top 10 countries in attack counts: The above diagram shows the top 10 regions with the most malicious IP addresses from the NSFOCUS IP Reputation databases at May 24, 2020. 2. Top 10 countries in attack percentage: The Belarus is in first place.The Cape Verde is in the second...
Blog
DDoS Attack Landscape 9
DDoS Botnets In 2019, NSFOCUS Security Labs detected over 400,000 DDoS attacks launched via botnets, a sharp increase compared with 2018 (8323 DDoS attacks). According to our observation, thebotnets running on IoT devices were mainly Mirai and Gafgyt families. These two families were exploited to launch over 60% of DDoS...
Adobe Releases May’s Security Updates Threat Alert
Overview On May 12, 2020, local time, Adobe officially released July's security updates to fix multiple vulnerabilities in its various products, including Adobe DNG Software Development Kit (SDK) and Adobe Acrobat and Reader. For details about the security update, visit the following link: https://helpx.adobe.com/security.html (mais…)
Java Deserialization Exploits: Registry Whitelist Bypass
In 2019, An Trinh discovered two vulnerabilities, CVE-2019-9670 (XXE/SSRF) and CVE-2019-6980 (deserialization vulnerability), in Zimbra. As usual, An Trinh did not disclose any details. Luckily, Hans Martin Munch is more generous than An Trinh and has shared many interesting ideas. For example, he once advised using YouDebug to fix the...
635Gbps DDoS attack spike During Covid-19 Pandemic
NSFOCUS cloud scrubbing center witnessed a torrent of DDoS attack traffic, with peak volume up to 634.8 Gbps. At 5 p.m. of May 20th, 2020, NSFOCUS SOC team detected an enormous DDoS attack – three IPs of a Hong Kong customer were hit by DDoS attacks and inbound traffic kept...
SecureCRT Memory Corruption Vulnerability (CVE-2020-12651) Threat Alert
Overview A memory corruption vulnerability (CVE-2020-12651) was fixed in the latest version 8.7.2 of SecureCRT. When the CSI function receives a large negative number as a parameter, it may allow the remote system to destroy the memory in the terminal process, resulting in the execution of arbitrary code or the...
