NSFOCUS Monthly APT Insights – September 2025
Regional APT Threat Situation In September 2025, the global threat hunting system of Fuying Lab detected a total of...
blog
250th Marine Corps Birthday: A Message From Commandant Marine Corps Gen. Eric M. Smith And Sergeant Major Of The Marine Corps Sgt. Maj. Carlos A. Ruiz
*** This is a Security Bloggers Network syndicated blog from Infosecurity.US authored by Marc Handelman. Read the original post...
Anchore Enterprise 5.23: CycloneDX VEX and VDR Support
Anchore Enterprise 5.23 adds CycloneDX VEX and VDR support, completing our vulnerability communication capabilities for software publishers who need...
JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice
Overview Recently, NSFOCUS CERT detected that JumpServer issued a security bulletin to fix the JumpServer connection token improper authentication...
Closing the Zero Trust Loop: ZTNA + CDR
November 6, 2025 Zero Trust has reshaped access cybersecurity. So much so, that it’s become a buzzword feared by...
Why Identity Intelligence Is the Front Line of Cyber Defense
Your data tells a story — if you know how to connect the dots. Every organization holds thousands of...
The Usual Suspects: 9 Dangerous File Types Every CISO Should Know
November 4, 2025 From PDFs to PowerPoints, the formats we rely on daily are also the ones attackers use...
NSFOCUS in SAS 2025: Unveiling Secrets Behind Large-Scale DDoS Attacks on AI Platform and Social Media
SANTA CLARA, Calif., November 4, 2025 – The 18th Global Security Analyst Summit (SAS) concluded successfully in Khao Lak, Thailand. Focused...
The AI Exchange: Innovators in Payment Security Featuring Block, Inc.
Welcome to the PCI Security Standards Council’s blog series, The AI Exchange: Innovators in Payment Security. This special, ongoing feature...
Apache Tomcat Path Traversal Vulnerability (CVE-2025-55752) Notice
Overview Recently, NSFOCUS CERT detected that Apache issued a security bulletin to fix the Apache Tomcat path traversal vulnerability...
Beyond The CVE: Deep Container Analysis with Anchore
As an Associate Professor of Cybersecurity, I spend a lot of time thinking about risk, and increasingly, that risk...
Incident Readiness vs Incident Response
Incident Readiness vs Incident Response Read the blog post at Binalyze.com In today’s hyper-connected enterprise, cyber threats are no longer...
Scanning GitHub Gists for Secrets with Bring Your Own Source
This is the forth blog post in our "Bring Your Own Source" series. The previous ones covered n8n workflow...
Blog: From Review to Rollout: Effective Strategies for Updating Policies and Procedures
Key Takeaways Strong governance lives in the rhythm of updating policies and procedures. Every policy update needs clear ownership,...
One Policy for Every File
October 23, 2025 Why Enterprises Need Cross-Channel Protection for Downloads, Attachments, Cloud Shares, and More Files move through an...
