The Secure Family News Cycle Never Stops

Videos

APT ‘Aquatic Panda’ Targets Universities with Log4JShell Exploit Tools

YouTube
. January 9, 2022
0
55 Views
Shares

As per the research released by CrowdStrike, experts disrupted an unusual activity by the threat group using some Log4Shell exploit tools on a weak VMware installation during the attack involving a big unknown academic institution.
Like many other security organizations, CrowdStrike was analyzing threat activities around CVE-2021-44228 vulnerability and colloquially called Log4Shell. In early December, it was present in the Apache Log4j logging library and instantly set upon by hackers.
Because of its common use, a number of infrastructure products from Twitter, CloudFlare, Apple, Microsoft, etc are now vulnerable to Log4Shell threat activities. Researchers showed that multiple components of VMware Horizon service were also vulnerable to Log4j exploits, leading OverWatch to include a service named VMware Horizon Tomcat to the processes-to-watch list.
Furthermore, researchers speculated that the Log4j exploit’s updated version was used during the actions of threat actors’ operations. The infrastructure utilized in these attacks was linked to Aquatic Panda.
#Log4J #vulnerability #cybersecurity #news

Tags:#vulnerability, APT, APT group, Aquatic Panda, CyberSecurity, Exploit Tools, ghidra exploit, hacking, Hacks, log4j, log4j attack, log4j demo, log4j explained, log4j exploit, log4shell, log4shell demo, log4shell explained, news, recent attack, reverse shell, Universities

Facebook Tweet LinkedIn

APT ‘Aquatic Panda’ Targets Universities with Log4JShell Exploit Tools

Researchers Discover New PlugX Malware Variant Spreading via Removable USB Devices

ChatGPT Privacy Bug Exposes Chat Histories to Other Users

PlugX Malware Hides on Removable USB Devices

Cybercriminals Use Fake Blue Screen of Death (BSOD) Message

North Korean UNC2970 Hackers Expands Operations with New Malware Families

Joomla Resources Directory (JRD) Portal Suffers Data Breach

Any Indian DigiLocker Account Could’ve Been Accessed Without Password

Hackers Leaked 269 GB of U.S. Police and Fusion Centers Data Online

Hackers Using Google Analytics to Bypass Web Security and Steal Credit Cards

OkCupid Dating App Flaws Could’ve Let Hackers Read Your Private Messages

5 Must-Try Real Estate Marketing Ideas That Will Attract Buyers | Entrepreneur

FBI Says New SMS Text Grift Alleges Unpaid Toll Road Charges | Entrepreneur

Netflix’s financial report highlights the success of the streaming service | Entrepreneur

Samsung: 6-Day Workweek For Execs, Company in Emergency Mode | Entrepreneur

Bezos Earth Fund Donates $100M to AI Fighting Climate Change | Entrepreneur

Biden Warns of Cyber Attack! "What is going to happen to Crypto & Money"

ALERT! MASSIVE CYBER ATTACK WARNING

CYBER ATTACKS HIT MULTIPLE ENERGY COMPANIES GLOBALLY, MEDIA GIANT ‘NEWS CORP ‘HIT

MardukHub Cyber Security Solution

APT ‘Aquatic Panda’ Targets Universities with Log4JShell Exploit Tools

Cyber Security

Data Breaches

Malware

Online Privacy

Reputation Management

Tips

Uncategorized

Videos

Vulnerabilities

Related Posts