Log4j – Page 3 – TheCyberThrone

TunnelVision Exploits Log4j Vulnerability in VMware

Hackers aligned with the government of Iran are exploiting the critical Log4j vulnerability to infect unpatched VMware users with ransomware, dubbed TunnelVision The name is meant to emphasize TunnelVision’s heavy…

PravinKarthik February 19, 2022

VMware Urges to Fix Horizon Log4j Flaws

VMware urges customers to patch critical Log4j security vulnerabilities impacting Internet exposed VMware Horizon servers targeted in ongoing attacks. Searching for Internet-exposed VMware Horizon servers with Shodan, we can find tens of…

PravinKarthik January 27, 2022

Security

Mirai Bots Joins the Log4j Exploitation List

Log4Shell, the critical unauthenticated remote code execution vulnerability identified in early December 2021 in the Apache Log4j logging utility, hasn’t seen the mass exploitation that many expected, but an exploit…

PravinKarthik January 25, 2022

Dutch NCSC Warns ⚠️ on Log4j Attacks

The Dutch National Cybersecurity Centre (NCSC) warns organizations to remain vigilant on possible attacks exploiting the Log4J vulnerability. Partly due to rapid actions of many organizations, the extent of active…

PravinKarthik January 23, 2022

SolarWinds Patched Log4j Serv-U Vulnerability

SolarWinds released patches for a Serv-U vulnerability that Microsoft says has been abused for the propagation of Log4j attacks. A multi-protocol file server, SolarWinds Serv-U can be used for sending/receiving…

PravinKarthik January 21, 2022

APT35 Exploits Log4j With CharmPower !

With the popularity of Log4j security vulnerability, multiple threat actors, mostly financially motivated, added it to their exploitation arsenal. It comes as no surprise that some nation-sponsored actors also saw…

PravinKarthik January 12, 2022

SAP Patches Log4Shell flaws in most of its products

SAP announced its first set of security updates for 2022, including patches for more applications affected by the Log4Shell vulnerability. SAP published a security note that consolidates all of the…

PravinKarthik January 12, 2022

H2 Database affected with Log4j Like Flaw

Researchers have disclosed aflaw affecting H2 database consoles that could lead to remote code execution in a manner that echoes the Log4Shell vulnerability. The issue, tracked as CVE-2021-42392, is the…

PravinKarthik January 7, 2022