Get a Pentest and security assessment of your IT network.

News

No Log4j, But Spring4Shell Exploitation Attempts Increase

Security firms track attempts to exploit Spring4Shell vulnerability in first four days. Trend Micro confirms first known large-scale operation successfully targeting the vulnerability. U.S. Cybersecurity and Infrastructure Security Agency warns organizations to patch this vulnerability at earliest opportunity. CISA has assigned a deadline of April 25, 2022, for all federal civilian agencies to identify and remediate the vulnerability on their information systems. The Spring Framework RCE vulnerability, which is tracked as CVE-2022-22965, affects the Spring MVC and Spring WebFlux applications.”]

Source: https://www.databreachtoday.com/no-log4j-but-spring4shell-exploitation-attempts-increase-a-18869

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2