Modernize the Log Management with Hillstone Security Audit Platform (HSA)

HSA2.5.0 : Embrace IPv6 Hillstone’s Security Audit Platform(HSA) gives a unified overview of the network and system vulnerability to ensure risk visibility, guarantee account protection, comply with security policies and respond to any security threats in a timely manner. From network security to information security audit, HSA helps customers determine the effectiveness of their existing…

Vulnerability Notification: Apache Subversion mod_dav_svn Denial of Service

[Overview] Subversion is an open source version control and software version control system that runs as a standalone server or as a module of the Apache HTTPD server. Recently, the denial of service vulnerability was fixed officially. [Vulnerability Details] CVE-2018-11803: The vulnerability is caused by improper dereference of an uninitialized pointer variable. A remote attacker…

Ransomware: Are we really prepared for cyber attacks?

On Black Friday of 2018, a powerful ransomware attack hit the San Francisco light rail system, threatening to destroy more than 30 GB of critical databases such as email, staff training, payroll, ticketing and other system data, unless they paid the authors 100 Bitcoins (which equals to approximately $ 355,966 USD). The company refused, resulting…

Announcing the Hillstone Security Management Platform (HSM) 3.2.0

We’ve amped up network protection with the latest updates to the Hillstone Security Management Platform (HSM/vHSM) with version 3.2.0. HSM is the centralized security management, configuration and monitoring solution for the Hillstone network security portfolio. With these updates, Hillstone delivers a comprehensive IPv6 solution, in conjunction with Hillstone security appliances. It also comes in a…

Vulnerability Notification: Microsoft Office Remote Code Execution

[Overview] Microsoft Office is an office software developed by Microsoft Corporation that can perform word processing, form editing, slide show production, and Email service. Recently, Microsoft fixed a remote code execution vulnerability in it. [Vulnerability Details] CVE-2018-8161: The vulnerability is caused by Outlook’s incorrect parsing of HTML. The vulnerable condition occurs when a MIME message…