<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=1354242&amp;fmt=gif">

Did you already forget about Log4j? Well, threat actors haven’t.

Cybercriminals have continued to exploit vulnerable VMWare Horizon and United Access Gateway servers that did not apply patches or workarounds for Log4j (CVE-2021-44228).  

Latest Threat Intel News:

 

Hackers Continue to Exploit Unpatched Servers

This includes suspected state-sponsored APT groups as well as ransomware operators. Yesterday’s 0-day is today’s compromise.

Recommendations

CISA recommends all organizations with affected systems that did not immediately apply available patches or workarounds to assume compromise and initiate threat hunting activities using the IOCs provided in this CSA (https://www.cisa.gov/uscert/ncas/alerts/aa22-174a).


This blog post and its contents are intended for general guidance and informational purposes only. This blog post is under no circumstances intended to be used or considered as specific insurance or information security advice.

Recent Articles

T-Mobile and Nissan Breached, New Git Vulnerabilities, & SSO Smishing

T-Mobile and Nissan disclose breaches, critical security flaws discovered by GitLab, and Single...

AI Helps Cybercriminals, Control Web Panel Vulnerability, Exploits of Unpatched Microsoft Exchange

AI helps cybercriminals, critical vulnerability in control web panel, and unpatched Microsoft...

Breach at Slack, Breach at CircleCI, & Unpatched Vulnerability Behind Rackspace Ransomware Outage

Breach at Slack, breach at CircleCI, and unpatched Microsoft Exchange causes ransomware incident.