Overview Recently, NSFOCUS CERT detected that OpenSSH released a security update and fixed a command injection vulnerability caused by malicious shell characters (CVE-2023-51385), with a CVSS score of 9.8; Since there is no security filtering of username and hostname input represented by %h,%u in OpenSSH’s ProxyCommand command, command injection may occur if the username or […]

Overview Recently, NSFOCUS CERT detected that Apache officially released a security announcement and fixed two high-risk vulnerabilities in Apache Ofbiz. CVE-2023-50968: Due to problems in Apache Software Foundation, unauthorized attackers can read files and carry out SSRF attacks when operating uri calls; CVE-2023-51467: Due to a privilege verification logic error in Apache Ofbiz, an attacker […]

SANTA CLARA, Calif., Dec 21, 2023 – NSFOCUS proudly announces its recognition in Frost & Sullivan’s latest report Insights for CISOs: Modernizing Security Operations Centers with Security Orchestration and Automated Response as a representative vendor. This insightful report delves into the growth environment, enterprise application value, SOAR solution benefits, the vendor ecosystem, and growth opportunities […]

I. Background of xorbot In November 2023, NSFOCUS Global Threat Hunting System detected that a type of elf file was being widely distributed and accompanied by a large amount of suspected encrypted outbound communication traffic. However, the detection rate of mainstream antivirus engines on this file was close to zero, which aroused our curiosity. After further […]

Cybersecurity Symposium 2023, Dec 14, Convention Hall @Hong Kong Convention and Exhibition Centre, Hong Kong The Cybersecurity Symposium is co-organised by the Office of the Government Chief Information Officer (OGCIO) and Hong Kong Internet Registration Corporation Limited (HKIRC). It aims to unite quangos, enterprises and other local organizations in Hong Kong to address the cybersecurity challenges of the digital […]

No complexo mundo da cibersegurança, a detecção e resposta estendidas, que também pode ser chamada de XDR, emergem como uma solução eficaz.  Continue a leitura para entender o que é, como funciona e por que as empresas estão recorrendo a essa abordagem inovadora para proteger suas operações contra ameaças digitais. O que é detecção e […]

Introduction On November 26, 2023,  the Guidelines for secure AI system development was jointly released by the UK National Cyber Security Centre (NCSC), the US Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the US National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the cybersecurity and information security departments of over […]

What is Zero Trust Security? Zero-trust security is not a specific technology or product, but a security model based on the concept that “All entities are untrusted”. Forrester defines zero trust as “Zero Trust is an information security model that denies access to applications and data by default. Threat prevention is achieved by only granting […]

CDIC, Nov 29-30, 2023, BITEC Bangna, Thailand. The CDIC conference & exhibition was held with the theme of “Powering Techno-Drive in Digi-Hype Behaviour towards Digital Trust”. NSFOCUS participated this pivotal event as Gold Sponsor in APAC to introduce our latest effective continuous threat exposure management (CTEM) program and XDR-powered threat analysis and response.  “Cyber Defense Initiative Conference […]

Rampant Ransomware Attacks On November 8, 2023, U.S. Eastern Time, ICBC Financial Services (FS), the U.S. arm of China’s largest bank, fell victim to a ransomware attack, disrupting certain systems. Reports indicate that the attack, linked to a Citrix vulnerability known as “CitrixBleed,” was orchestrated by the LockBit group. ICBC FS is actively investigating the […]