Blog

In today’s rapidly evolving cybersecurity landscape, staying ahead of threats is not just a challenge, it’s a necessity. At NSFOCUS, we are committed to providing users with the most advanced and comprehensive threat intelligence solutions to safeguard the organization against the ever-growing spectrum of cyber threats. NSFOCUS threat intelligence (NTI) is complemented by integration with […]

SANTA CLARA, Calif., June 17, 2025 – Recently, IDC officially released the China IT Security Service Market Tracking Report (2024H2). The report shows that NSFOCUS has outstanding performance in the security consulting service market, ranking the 3rd place. NSFOCUS has always adhered to a customer-centric approach, continued to increase the integration and innovation of AI […]

Regional APT Threat Situation Overview In April 2025, the global threat hunting system of Fuying Lab discovered a total of 20 APT attack activities. These activities are mainly distributed in East Asia, South Asia, Middle East and Eastern Europe, as shown in the following figure. In terms of group activity, the most active APT group […]

Se você trabalha com tecnologia, administra um site ou apenas se preocupa com a sua segurança digital, este artigo é para você. Vamos falar sobre um dos tipos de ataques cibernéticos mais antigos e ainda muito comuns: o ataque de força bruta. Aqui você vai entender exatamente o que é esse tipo de ataque, como […]

Santa Clara, Calif. Jun 13, 2025 – NSFOCUS, a global provider of intelligent hybrid security solutions, announced today that it has attained ISO 27701:2019 Privacy Information Management System (PIMS) certification. ISO/IEC 27701 extends the ISO/IEC 27001 information security management system to address global privacy protection needs, establishing a unified international standard for information security, privacy, […]

Overview On June 11, NSFOCUS CERT detected that Microsoft released a security update patch for June, fixing 67 security issues involving widely used products such as Windows, Microsoft Office, Azure, and Microsoft Visual Studio, including high-risk vulnerability types such as privilege escalation and remote code execution. Of the vulnerabilities fixed in Microsoft’s monthly update this […]

Overview Recently, NSFOCUS CERT detected that Apache issued a security bulletin to fix the arbitrary file read and SSRF vulnerabilities in Apache Kafka (CVE-2025-27817); Because the Apache Kafka client does not strictly validate and restrict user input, an unauthenticated attacker can elevate the file system/environment/URL access rights of the REST API by constructing malicious configurations […]

SANTA CLARA, Calif., June 9, 2025 – NSFOCUS, a global leader in cybersecurity solutions, announced the release of its annual report, the 2024 Global DDoS Landscape Report. The full report is packed with in-depth analysis and insights that can help organizations better understand the DDoS threat environment and formulate more effective countermeasures. Highlights of the […]

Overview Recently, NSFOCUS CERT has detected that DataEase has issued a security bulletin to fix multiple high-risk vulnerabilities in DataEase (CVE-2025-49001/CVE-2025-49002/CVE-2025-48999). Combined use can achieve unauthorized code execution. At present, the vulnerability details and PoC have been made public. Relevant users are requested to take measures to protect them as soon as possible. CVE-2025-49001: Due […]

O mercado de serviços de proteção contra ataques de negação de serviço distribuídos, ou Anti-DDoS – possui um grande foco na mitigação de ataques direcionados à camada de rede da infraestrutura das empresas. Os ataques DDoS (Distributed Denial of Service) continuam sendo uma das maiores ameaças à disponibilidade de serviços online. Com o aumento da […]