LunaSec

Spring4Shell: No need to panic, but mitigations are advised

March 31, 2022

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

December 10, 2021

A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, …

Resources

Enzoic AD Lite Password Audit Report
Whitepaper: Voice of Security 2025
Report: Fortune 500 employee-linked account exposure
Report: The State of Secrets Sprawl 2025
eBook: What does it take to be a full-fledged virtual CISO?

Don't miss

Funding uncertainty may spell the end of MITRE’s CVE program
When companies merge, so do their cyber threats
Strategic AI readiness for cybersecurity: From hype to reality
Attack Flow: Learn how cyber adversaries combine and sequence offensive techniques
The future of authentication: Why passwordless is the way forward

LunaSec

Spring4Shell: No need to panic, but mitigations are advised

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

Featured news

Resources

Don't miss