techtimes

Lazarus Group Still Exploits Log4Shell: What Are Andariel’s Recent Cyberattacks?

North Korean hackers remain relentless in exploiting the Log4Shell vulnerability worldwide. Recent reports reveal that these hackers, operating under the guise of "Andariel" within the Lazarus ...
SDxCentral

Ransomware Gangs Exploit VMware Log4Shell Vulnerability

“Our investigation shows that successful intrusions in these campaigns led to the deployment of the Night Sky ransomware,” Microsoft noted. Identified earlier this month by Twitter group ...
HHS

FritzFrog Botnet Exploits Log4Shell

Delivering more proof that the Log4Shell vulnerability is endemic, Akamai researchers detected botnet malware updated to use the flaw as an infection vector, supplementing its usual remote login brute ...
Dark Reading

FritzFrog Botnet Exploits Log4Shell on Overlooked Internal Hosts

A new variant of an advanced botnet called "FritzFrog" has been spreading via Log4Shell. It's been more than two years since the critical vulnerability in Log4j was first unleashed unto this earth, ...
CSOonline

Lazarus APT attack campaign shows Log4Shell exploitation remains popular

The ongoing attack targets manufacturing, agricultural, and physical security organizations that have yet to fix vulnerabilities in the Log4j code. Despite receiving a patch two years ago, the ...
Government Technology

Open Source Community Leaders Talk Promise vs. Vulnerability

Interest continues to build for creating a safer open source software ecosystem, in part because of the code vulnerability Log4Shell, which one recent report predicts will pose a risk for the next ...
Dark Reading

XZ Utils Backdoor Implanted in Carefully Executed, Multiyear Supply Chain Attack

A newly discovered backdoor in XZ Utils, a data compression utility present in nearly all Linux distributions, has revived the ghosts of previous major software-supply chain security scares such as ...