Cloud Security

Review of the ransomware threat situation analysis report for 2017 and the analysis report for 2017, according to a report released by the 238 Internet Security Center, New ransomware variants and new domain names were intercepted on

Apache Struts Denial of Service Vulnerability (CVE-2018-1327)Apache Struts Denial of Service Vulnerability (CVE-2018-1327) Release date:Updated on:Affected Systems: Apache Group Struts Description: Bugtraq id: 103516CVE (CAN) ID: CVE-2018-1327

Two Memcached DDoS attacks PoC released Memcached DDoS attack-a few days after the world's largest DDoS attack reaches 1.7Tbps, two PoC codes for Memcached amplification attacks were published. The vulnerability behind Memcached DDoS attacks is

If one character is used, the OS of the Apple product will be suspended. Apple will release an update solution. Not long ago, Apple solved the iMessage vulnerability named chaiOS (the system of iOS and macOS devices crashes and restarts with a

Dnsmasq Security Restriction Bypass Vulnerability (CVE-2017-15107)Dnsmasq Security Restriction Bypass Vulnerability (CVE-2017-15107) Release date:Updated on:Affected Systems: Dnsmasq Description: Bugtraq id: 102812CVE (CAN) ID:

Iis php fastcgi mode pathinfo value error Arbitrary Code Execution Vulnerability repair method, fastcgipathinfo Description: The target has the arbitrary code execution vulnerability. Cause of vulnerability: the default PHP configuration IS

How to Use the license to the shared folder encryption software for LAN Shared File Permission setting softwareShared to shared folder management software (: http://www.grabsun.com/gxwjjm.html) is a dedicated protection LAN Shared File Access

Cisco WebEx Meeting Center GET Parameter Vulnerability (CVE-2015-4208)Cisco WebEx Meeting Center GET Parameter Vulnerability (CVE-2015-4208) Release date:Updated on:Affected Systems: Cisco WebEx Meeting Center Description: CVE (CAN) ID: CVE-201

Symantec Endpoint Protection Manager/Client SQL Injection VulnerabilitySymantec Endpoint Protection Manager/Client SQL Injection Vulnerability Release date:Updated on:Affected Systems: Symantec Endpoint Protection Manager Description: Bugtraq id: 7

Adobe Acrobat and Reader Remote Security Restriction Bypass Vulnerability Release date:Updated on: 2011-11-16 Affected Systems:Adobe Acrobat 9.xAdobe Acrobat 8.xAdobe Acrobat 10.xAdobe Reader 9.xAdobe Reader 8.xUnaffected system:Adobe Acrobat

Release date:Updated on: 2013-02-19 Affected Systems:Cisco Linksys E1500 1.0.05-build 1Cisco Linksys E1500 1.0.04-build 2Cisco Linksys E1500 1.0.00-build 9Cisco Linksys E2500 1.0.03Description:---------------------------------------------------------

Spanish researchers during this monthGuerreroResearch found HP Printing SoftwareJetDirect has a vulnerability that allows attackers to bypass bio-or swipe card security protection, access some printed documents, or advertise the network to cause DoS

The "transition" period of "private cloud" security-the design concept of the "Cloud" SOLUTION Jack zhai I. Embarrassing status quo of private cloud security Cloud computing is favored by CIOs because IT can provide virtualized resource pools,

USB flash drives, a mobile storage device, provide great convenience for people to store data due to its advantages such as small size, large capacity, and easy to carry. But thanks to this convenience, the virus also has a chance to take advantage

From the emergence of the firewall in Linux to the present, the firewall has gone through four major stages of development: the first stage: Router-based firewall; the second stage: user-based firewall tool kits; the third stage: A firewall built on

Bkjia.com integrated message] At present, full disk encryption FDE technology is well respected, and FDE based on full disk encryption is also widely used in the world. Whether it is the well-known Safeboot, Pointsec, or the only FDE software

A reflective XSS and refer verification on Sina Weibo is lax (user login names and plaintext passwords can be intercepted, worms can be used, and followers can be refreshed) I originally wanted to find a CSRF. I found an XSS, and then I found a

Web security practices (7) Introduction to web servers and common attack software Through the previous discussion, we have learned how to determine the type of web server. From this section, we will discuss web platform vulnerability attacks. The

Recently, this is a very popular issue. Authentication phishing is caused by a problem of referencing network images. Currently, there is only one solution, that is, network images cannot be referenced, if you think of a better solution for

Kali Linux penetration testing-DoS attacks and defense As a Penetration Tester, sometimes we need to test the customer's system against DDOS attacks. At this time, we need a qualified testing tool. In Kali Linux, some DDOS testing tools are