logo
  • About
  • Contact
  • Instant Response
  • Hall of fame
  • COVID-19

Categories

  • Alerts and warnings
  • BU Safe
  • Hit by ransomware?
  • Incident handling
  • News

Noticed a problem?

Report an Incident
–or–

Recent Posts

  • Researcher Publishes PoC Exploit for Privilege Escalation Flaw (CVE-2023-0179) in Linux Kernel
  • ProxyNotShell, OWASSRF, TabShell: Patch Your Microsoft Exchange Servers Now
  • Vulnerability Summary for the Week of January 23, 2023
  • What SOCs Need to Know About Water Dybbuk, A BEC Actor Using Open-Source Toolkits
  • New High-Severity Vulnerabilities Discovered in Cisco IOx and F5 BIG-IP Products

Video

https://www.youtube.com/watch?v=wMsHDH67eb4

RSS NVD Data Feed

  • CVE-2021-41989 (qlikview) 26 January 2023
  • CVE-2021-36686 (yapi) 26 January 2023
  • CVE-2021-41988 (nprinting_designer) 26 January 2023
  • CVE-2021-36539 (canvas_learning_management_service) 26 January 2023
  • CVE-2020-22327 (hfish) 26 January 2023

RSS CERT-EU News Feed

Information

  • Privacy & Cookies Policy

Log4Shell exploits are used for DDoS botnets and cryptominers installation

Posted on 3 March 2022

From en.secnews.gr

cryptominers

Vulnerability Log4Shell in widely used software log4j continues to be used by cyber criminals to develop various malware payloads, as well as to device recruitment in DDoS botnets and for installing cryptominers.

Read more…

Posted in News

Post navigation

Previous post: ADExplorerSnapshot.py: AD Explorer snapshot ingestor for BloodHound
Next post: TeaBot Banking Trojan Posted as QR Code app in Google Play Store Targeting US Users
BU CERT
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie
Mellon University

Other CERTs

  • National Cyber Security Centre
  • US-CERT
  • FORTHcert
Proudly powered by WordPress | Theme: bu-cert by Nan Jiang.