All posts tagged "Log4j Vulnerability"

• Vulnerabilities

  Do You Really Trust Your Web Application Supply Chain?

  Well, you shouldn’t. It may already be hiding vulnerabilities. It’s the modular nature of modern web applications that has made them so...

• 

  4.2K

  Vulnerabilities

  Iranian Hackers Exploit Log4j Vulnerability to Deploy PowerShell Backdoor

  An Iranian state-sponsored actor has been observed scanning and attempting to abuse the Log4Shell flaw in publicly-exposed Java applications to deploy a...

• 

  2.5K

  Vulnerabilities

  China suspends deal with Alibaba for not sharing Log4j 0-day first with the government

  China’s internet regulator, the Ministry of Industry and Information Technology (MIIT), has temporarily suspended a partnership with Alibaba Cloud, the cloud computing...

• 

  4.7K

  Vulnerabilities

  New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability

  Cybersecurity researchers have discovered an entirely new attack vector that enables adversaries to exploit the Log4Shell vulnerability on servers locally by using...

• 

  1.4K

  Vulnerabilities

  Apache Issues 3rd Patch to Fix New High-Severity Log4j Vulnerability

  The issues with Log4j continued to stack up as the Apache Software Foundation (ASF) on Friday rolled out yet another patch —...

• 

  2.5K

  Vulnerabilities

  Apache Log4j Vulnerability — Log4Shell — Widely Under Active Attack

  Threat actors are actively weaponizing unpatched servers affected by the newly identified “Log4Shell” vulnerability in Log4j to install cryptocurrency miners, Cobalt Strike,...