Traffic Abnormal does not differentiate between alert types. Any instance where the total traffic volume for a single destination IP exceeds the threshold is considered a traffic anomaly.
Blog
Apache Arrow PyArrow Arbitrary Code Execution Vulnerability (CVS 2023-47248) Notification
Overview Recently, NSFOCUS CERT found that Apache Arrow issued a security notice, which fixed an arbitrary code execution vulnerability in the PyArrow library (CVE-2023-47248). Due to PyArrow reading Arrow IPC, Feather, or Parquet data from untrusted sources, PyExtensionType creates an automatic loading feature that allows for deserialization of data from...
Why Isn’t My ChatGPT Working?
"My ChatGPT isn't working properly." “I can't log in, and it's not responding at all.†Just as OpenAI released a series of new features recently, ChatGPT experienced prolonged service disruptions last Wednesday. Subsequently, OpenAI issued a statement revealing that they were facing periodic outages across ChatGPT and the API due...
What are the differences between DDoS attacks on the application layer and the network layer
The market for services protecting against distributed denial of service attacks, or Anti-DDoS, has a significant focus on mitigating attacks aimed at the network layer of companies' infrastructure. In this type of attack, infected vectors are commonly used to generate requests without the aim of concrete communication, intending to flood...
Quais as diferenças entre ataques DDoS na camada de aplicação e na camada de rede?
O mercado de serviços de proteção contra ataques de negação de serviço distribuídos, ou Anti-DDoS - possui um grande foco na mitigação de ataques direcionados à camada de rede da infraestrutura das empresas. Neste tipo de ataque, os vetores infectados são utilizados comumente para gerar requisições sem objetivo de comunicação...
The New APT Group DarkCasino and the Global Surge in WinRAR 0-Day Exploits
Overview In 2022, NSFOCUS Research Labs revealed a large-scale APT attack campaign called DarkCasino and identified an active and dangerous aggressive threat actor. By continuously tracking and in-depth study of the attacker's activities, NSFOCUS Research Labs has ruled out its link with known APT groups, confirmed its high-level persistent threat...
