Mitigating Slow HTTP Denial of Service Attacks on Nginx

Mitigating Slow HTTP Denial of Service Attacks on Nginx These attacks exploit the server’s resource allocation for each connection, consuming connection pools, workers, or memory. 1. Mitigation Strategies (Nginx Level Defense) 1. Limit Request Header and Body Timeouts Set reasonable timeout values to prevent long-term connection occupation. http { # Limit the time to read … Read more

Vulnerability in Linux Kernel KSMBD Subsystem Can Lead to Resource Exhaustion by Remote Attackers

Vulnerability in Linux Kernel KSMBD Subsystem Can Lead to Resource Exhaustion by Remote Attackers

Shake Network Technology NewsClick the right to follow for the latest technology news!A denial-of-service vulnerability has been discovered in the KSMBD (SMB Direct) subsystem of the Linux kernel, which has garnered widespread attention in the open-source community. This vulnerability, identified as CVE-2025-38501, allows remote attackers to exhaust all available SMB connections without authentication by exploiting … Read more

Security Observations on Educational Networks: Universities Must Beware of Vulnerabilities in the HTTP/2 Protocol

Security Observations on Educational Networks: Universities Must Beware of Vulnerabilities in the HTTP/2 Protocol

AI technology is changing the patterns of cyber attacks. Cybersecurity company ESET has announced the detection of the world’s first AI-driven ransomware “PromptLock,” which utilizes the Ollama API to locally invoke OpenAI’s gpt-oss:20b model, generating and executing malicious Lua scripts in real-time to bypass traditional antivirus signature detection methods. Another security company, Kaspersky, has also … Read more

Vulnerability in Linux Kernel KSMBD Subsystem Allows Remote Attackers to Exhaust Server Resources

Vulnerability in Linux Kernel KSMBD Subsystem Allows Remote Attackers to Exhaust Server Resources

A denial-of-service vulnerability has been discovered in the KSMBD (SMB Direct) subsystem of the Linux kernel, which has garnered significant attention in the open-source community. This vulnerability, identified as CVE-2025-38501, allows remote attackers to exhaust all available SMB connections without authentication by exploiting the kernel’s handling of half-open TCP sessions. 01 Key Points CVE-2025-38501 allows … Read more

Linux KSMBD Subsystem Vulnerability Can Exhaust Server Resources

Linux KSMBD Subsystem Vulnerability Can Exhaust Server Resources

Recently, a denial-of-service vulnerability was discovered in the KSMBD (SMB Direct) subsystem of the Linux kernel, attracting widespread attention in the open-source community. This vulnerability, identified as CVE-2025-38501, allows remote and unauthenticated attackers to exploit the kernel’s handling of half-open TCP sessions to exhaust all available SMB connections. The key aspect of this vulnerability is … Read more

Linux Kernel KSMBD Subsystem Vulnerability Allows Remote Attackers to Exhaust Server Resources

Linux Kernel KSMBD Subsystem Vulnerability Allows Remote Attackers to Exhaust Server Resources

A denial-of-service vulnerability has been discovered in the KSMBD (SMB Direct) subsystem of the Linux kernel, which has garnered widespread attention in the open-source community. This vulnerability, identified as CVE-2025-38501, allows remote attackers to exhaust all available SMB connections without authentication by exploiting the kernel’s handling of half-open TCP sessions.Part01 Key Points CVE-2025-38501 allows attackers … Read more

Cybersecurity Alert: Detailed Analysis of the HTTP/2 Vulnerability ‘Made You Reset’

Cybersecurity Alert: Detailed Analysis of the HTTP/2 Vulnerability 'Made You Reset'

Recently, a new type of cyber vulnerability known as “Made You Reset” has garnered widespread attention in the security field. This vulnerability is related to the HTTP/2 protocol, which is widely used on the modern internet, and can be exploited by attackers to launch large-scale Denial of Service (DoS) attacks, potentially exhausting server resources and … Read more

Vulnerability Alert: NetScaler ADC & NetScaler Gateway Denial of Service Vulnerability CVE-2023-6549

Vulnerability Alert: NetScaler ADC & NetScaler Gateway Denial of Service Vulnerability CVE-2023-6549

Click the blue text to follow us On January 18, 2024, the Baowangda Xingluo Cybersecurity Laboratory detected the denial of service vulnerability CVE-2023-6549 in NetScaler ADC & NetScaler Gateway. Vulnerability Overview NetScaler ADC and NetScaler Gateway are products of Citrix Systems, Inc. NetScaler Gateway is a secure remote access solution that provides application-level and data-level … Read more