Haozhe Zhang, Author at Unit 42

Threat brief cover image for overviews of vulnerabilities such as CVE-2022-26809, CVE-2022-26923 and CVE-2022-26925

5,050

people reacted

脅威に関する情報: Microsoft製品の重大脆弱性(CVE-2022-26809、CVE-2022-26923、CVE-2022-26925)

By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng
July 27, 2022 at 6:23 PM

0

4 min. read

A conceptual image representing a vulnerability, such as CVE-2022-22965, aka SpringShell, discussed here.

11,403

people reacted

[2022-04-19 JST Windows/Linuxによる保護セクションを更新] CVE-2022-22965: Spring Coreにリモートコード実行脆弱性(SpringShell)、すでに実際のエクスプロイトも

By Tao Yan, Qi Deng, Ken Hsu and Haozhe Zhang
March 31, 2022 at 9:57 PM

1

4 min. read

A conceptual image representing a vulnerability, such as the Apache log4j remote code execution vulnerability discussed here, CVE-2021-44228.

30,766

people reacted

[2022-03-31 10:00 PDT更新] 脅威に関する情報: Apache Log4jに新たな脆弱性(CVE-2021-44228) 実際の悪用も確認

By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu and Josh Grunzweig
December 10, 2021 at 10:05 PM

12

5 min. read

A conceptual image representing a vulnerability, such as CVE-2021-32305, discussed in this post.

2,739

people reacted

新たなMirai亜種WebSVNのコマンドインジェクション脆弱性（CVE-2021-32305）を標的に

By Haozhe Zhang and Brock Mammen
August 30, 2021 at 6:00 AM

0

2 min. read

9,224

people reacted

QNAP/Synologyの両NASデバイスを標的とする新たなeCh0raixランサムウェア亜種

By Zhibin Zhang, Ruchna Nigam and Haozhe Zhang
August 10, 2021 at 3:00 AM

0

6 min. read

3,329

people reacted

Nagios XIサーバーが攻撃者のために仮想通貨のマイニングをしていないか確認を

By Zhibin Zhang, Qi Deng, Haozhe Zhang and Vaibhav Singhal
April 15, 2021 at 6:45 PM

3

2 min. read

2,637

people reacted

Miraiボットネット亜種SatoriがVantage Velocityフィールドユニットのリモートコード実行(RCE)脆弱性を標的に

By Haozhe Zhang, Vaibhav Singhal, Zhibin Zhang and Jun Du
March 17, 2021 at 9:43 PM

0

2 min. read

This conceptual image illustrates the idea of malware, such as the njRAT spreading through active Pastebin command and control tunnel that is discussed in this blog.

4,470

people reacted

稼働中のPastebinによるコマンド&コントロールトンネルを介しnjRATが拡散

By Yanhui Jia, Chris Navarrete and Haozhe Zhang
December 9, 2020 at 6:00 AM

0

3 min. read

This image illustrates the concept of a vulnerability.

8,090

people reacted

実際の悪用が確認されているvBulletinの事前認証リモートコード実行(RCE)脆弱性CVE-2020-17496のエクスプロイト

By Zhibin Zhang, Haozhe Zhang, Qi Deng and Ruchna Nigam
September 3, 2020 at 11:32 PM

0

4 min. read

5,437

people reacted

GrandstreamおよびDrayTekデバイスのエクスプロイトで拡大する新たなHoaxcalls DDoSボットネット

By Ken Hsu, Haozhe Zhang, Zhibin Zhang and Ruchna Nigam
April 5, 2020 at 11:54 PM

0

3 min. read