Summary: On Dec. 9, 2021, Proof of Concept exploitation code for the remote code execution (RCE) vulnerability (CVE-2021-44228) in Apache Log4j was published to GitHub. Shortly thereafter, there was evidence of widespread exploitation, across the internet. Apache Log4j is a widely used library, that allows for easy logging of events within Java applications. One commonly used feature is that the library can retrieve information from remote servers and update log messages with said information.......
Kaseya VSA Attack Delivers REvil Ransomware
Summary: On 07/02/2021, Kaseya disclosed an ongoing attack exploiting on-premise Kaseya VSA servers, along with an advisory to their...Read More