![]() ![]() “As part of this exploitation, suspected APT actors implanted loader malware on compromised systems with embedded executables enabling remote command and control (C2),” the agencies explained. ![]() In an alert published on Thursday, the agencies included detailed rundowns of two different incidents affecting unnamed organizations where CVE-2021-44228 was exploited. The government agencies said the vulnerability is being used in attacks by a range of threat actors, including state-backed groups. The Cybersecurity and Infrastructure Security Agency (CISA) and the United States Coast Guard Cyber Command (CGCYBER) warned organizations that unpatched VMWare Horizon and Unified Access Gateway (UAG) servers are still being exploited through CVE-2021-44228 – known widely as Log4Shell. CISA, US Coast Guard warn of Log4Shell attacks after 130GB data breach in May
0 Comments
Leave a Reply. |