WebLogic Remote Code Execution Vulnerability(CVE-2018-3191)Threat Alert
outubro 23, 2018
Overview
On October 17, Beijing time, Oracle officially released a Critical Patch Update (CPU), which contains a fix for the critical WebLogic remote code execution vulnerability (CVE-2018-3191). This vulnerability allows unauthenticated attackers with network access via T3 to compromise vulnerable Oracle WebLogic Server. Successful exploitation of it can result in takeover of Oracle WebLogic Server, hence remote code execution.
XBash Malware Security Advisory
outubro 18, 2018
On September 17, 2018, Unit42 researchers published an analysis of a new malware family XBash on its official blog. According to them, XBash was developed by the Iron Group, a cybercrime organization that has been active since 2016. The malware was named XBash based on the name of the malicious code’s original main module. XBash combines functions of ransomware, coinminers, botnets, and worms to target Linux and Microsoft Windows servers. (mais…)
Doing It Better
janeiro 21, 2016
Track: Technical
Author: Stephen Gates, Chief Research Intelligence Analyst, NSFOCUS
Flying at 40,000 feet above the ground always gives one a sense of clarity. Looking down on the world from such a height can make a person feel somewhat insignificant. However, my trip today is very noteworthy. I will be landing in Las Vegas in a few hours and the next four days will be filled with excitement, entertainment, and education. I am not going to Vegas for the adult playground activities like many of my fellow passengers. I am going there to attend the most exciting event of my career; the 2016 Sales Kickoff for a widely-unknown company in the U.S. called NSFOCUS IB. (mais…)
