Log4j
-
Amazon’s Hotpatch for Log4j Flaw Found Vulnerable to Privilege Escalation Bug
The “hotpatch” released by Amazon Web Services (AWS) in response to the Log4Shell vulnerabilities could be leveraged for container escape…
Read More » -
Chinese Hackers Target VMware Horizon Servers with Log4Shell to Deploy Rootkit
A Chinese advanced persistent threat tracked as Deep Panda has been observed exploiting the Log4Shell vulnerability in VMware Horizon servers…
Read More » -
Of Cybercriminals and IP Addresses
You don’t like having the FBI knocking on your door at 6 am in the morning. Surprisingly, nor does your…
Read More » -
Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability
Muhstik, a botnet infamous for propagating via web application exploits, has been observed targeting Redis servers using a recently disclosed…
Read More » -
New “B1txor20” Linux Botnet Uses DNS Tunnel and Exploits Log4J Flaw
A previously undocumented backdoor has been observed targeting Linux systems with the goal of corralling the machines into a botnet…
Read More » -
Why Enterprise Threat Mitigation Requires Automated, Single-Purpose Tools
As much as threat mitigation is to a degree a specialist task involving cybersecurity experts, the day to day of…
Read More » -
Iranian Hackers Exploit Log4j Vulnerability to Deploy PowerShell Backdoor
An Iranian state-sponsored actor has been observed scanning and attempting to abuse the Log4Shell flaw in publicly-exposed Java applications to…
Read More » -
How Can You Leave Log4J in 2021?
With the last month of 2021 dominated by the log4J vulnerabilities discovery, publication, and patches popping up in rapid succession,…
Read More » -
Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries
A study of 16 different Uniform Resource Locator (URL) parsing libraries has unearthed inconsistencies and confusions that could be exploited…
Read More » -
NHS Warns of Hackers Targeting Log4j Flaws in VMware Horizon
The digital security team at the U.K. National Health Service (NHS) has raised the alarm on active exploitation of Log4Shell…
Read More »