SDxCentral

Ransomware Gangs Exploit VMware Log4Shell Vulnerability

“Our investigation shows that successful intrusions in these campaigns led to the deployment of the Night Sky ransomware,” Microsoft noted. Identified earlier this month by Twitter group ...
Homeland Security Today

CISA Releases Log4Shell-Related MAR

From May through June 2022, CISA responded to an organization that was compromised by an exploitation of an unpatched and unmitigated Log4Shell vulnerability in a VMware Horizon server. CISA analyzed ...
CSO Online

Vulnerability prioritization beyond the CVSS number

A vulnerability in a tightly isolated sandbox may score a 9.8 but never affect anything else. Meanwhile, a 5.2 in a single ...
Into the Shadows on MSN

Inside the Log4j Crisis: How a Simple Bug Threatened Global Security

In December 2021, a critical vulnerability known as Log4Shell (CVE-2021-44228) was discovered in the widely-used Apache Log4j logging library. This flaw allowed attackers to execute arbitrary code on ...