Asbit: An Emerging Remote Desktop Trojan
Asbit: An Emerging Remote Desktop Trojan
August 31, 2022
by

Introduction   Juniper Threat Labs is currently monitoring an emerging Chinese Remote Desktop Trojan called Asbit. It’s a remote access Trojan being advertised on its developer’s website as a “Fast

More
Share
Can You Trust that Test Report?
Can You Trust that Test Report?
July 29, 2022
by

Whether at work or our personal lives, we want to purchase a product that performs as advertised and gets the job done. Fortunately for consumers, there are excellent resources that

More
Share
CVE-2022-30190: Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
CVE-2022-30190: Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
June 8, 2022
by

A zero-day vulnerability was discovered on Microsoft Windows Support Diagnostic Tool (MSDT).  On May 27, a researcher who goes by the twitter handle nao_sec discovered an interesting Microsoft Word document

More
Share
Simplifying the SASE Experience with Juniper Networks
Simplifying the SASE Experience with Juniper Networks
June 6, 2022
by

With networks becoming more distributed and complex, and IT resourcing either remaining flat or declining, networking and security teams have to do more without actually having more. Secure Access Service

More
Share
Executive Order 14028 on Improving National Cybersecurity – Explained
Executive Order 14028 on Improving National Cybersecurity – Explained
April 18, 2022
by

On May 12, 2021, United States President, Joe Biden, signed Executive Order 14028 to address the increasing nature of cybersecurity attacks and the effect that they have on businesses, the

More
Share
Muhstik Gang targets Redis Servers
Muhstik Gang targets Redis Servers
March 24, 2022
by

Juniper Threat Labs has uncovered an attack that targets Redis Servers using a recently disclosed vulnerability, namely CVE-2022-0543. This vulnerability exists in some Redis Debian packages. The attack started on

More
Share
Juniper Takes the Edge Off SASE Migration with New Cloud-Delivered Firewall Services, Designed for Anytime/Anywhere Workforce Protection
Juniper Takes the Edge Off SASE Migration with New Cloud-Delivered Firewall Services, Designed for Anytime/Anywhere Workforce Protection
February 2, 2022
by

As more companies embrace a Work-From-Anywhere (WFA) workforce, new cloud-based architectures are required to secure the network edge. However, many organizations are hesitant to walk toward SASE for fear of

More
Share
Log4j Attack Payloads In The Wild
Log4j Attack Payloads In The Wild
December 17, 2021
by

Juniper Threat Labs compiled a list of the payloads from log4j attacks we have seen as of 12/16. Most of the payloads install malware such as Muhstik, Kinsing, Mirai and

More
Share
Log4j Vulnerability: Attackers Shift Focus From LDAP to RMI
Log4j Vulnerability: Attackers Shift Focus From LDAP to RMI
December 15, 2021
by ,

In a previous post, we discussed the Log4j vulnerability CVE-2021-44228 and how the exploit works when the attacker uses a Lightweight Directory Access Protocol (LDAP) service to exploit the vulnerability.

More
Share
Apache Log4j Vulnerability CVE-2021-44228 Raises widespread Concerns
Apache Log4j Vulnerability CVE-2021-44228 Raises widespread Concerns
December 12, 2021
by

Log4j is a popular logging library used in Java by a large number of applications online. To enhance its functionality from basic log formatting, Log4j added the ability to perform

More
Share