log4j
-
Cybersecurity
Log4J at 1: A third of downloads still vulnerable to RCE
A year after a critical vulnerability in a ubiquitous piece of open source software, Log4J, set off what The Stack…
Read More » -
Read This
The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned…
Attackers continue to accelerate their weaponisation of newly-discovered flaws, the Five Eyes list of most-exploited vulnerabilities of 2021 shows. Contrary…
Read More » -
Read This
CrowdStrike names Turkey and Colombia as significant new sources of cyber-attacks
New state actors, labelled Wolf and Ocelot, identified in threat report
Read More » -
Cybersecurity
Log4j DIDN’t result in mass abuse – but VMware Horizon attacks continue
"Only a handful of customers faced attempted intrusions where Log4j was... the initial entry point
Read More » -
Cybersecurity
Microsoft security update sets klaxons blaring in… Microsoft Defender
Microsoft flags one of its own processes as sensor tampering.
Read More » -
Cybersecurity
-
Cybersecurity
VMware vCenter “trivial to exploit” using Log4Shell, POC available
"All VCenter instances trivially exploitable by a remote and unauthenticated attacker."
Read More » -
Cybersecurity
Critical bug in ubiquitous Java framework sets off an internet cluster bomb
AWS, Red Hat, VMware, more affected with pre-auth RCE exploits circulating
Read More »