CISA: Hackers continue to use Log4Shell on unpatched VMware servers


In December 2021, VMware released patches related to Log4Shell, a vulnerability in a popular Java framework that compromised countless servers. But the Cybersecurity and Infrastructure Security Agency (CISA) and the US Coast Guard Cyber ​​Command (CGCYBER) say hackers have continued to exploit the vulnerability more than six months after those patches were deployed.

That’s what the authorities say in a joint cybersecurity advisory(Opens in a new window) June published that “Cyber ​​threat actors, including government-sponsored Advanced Persistent Threat (APT) actors, continued to exploit CVE-2021-44228 (Log4Shell) in VMware Horizon and Unified Access Gateway (UAG) servers to gain initial access receive organizations that have not applied available patches or workarounds.”

CISA and CGCYBER say at least some target organizations have been infected with malware that the hackers could use in conjunction with their command and control infrastructure. “In a confirmed compromise,” the agencies say, “these…


Source link

Leave a Reply