LunaSec

Spring4Shell: No need to panic, but mitigations are advised

March 31, 2022

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

December 10, 2021

A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, …

Resources

Download: The Ultimate Guide to the CCSP
Whitepaper: 9 traits of effective cybersecurity leaders of tomorrow
Download: The Ultimate Guide to the CISSP
Whitepaper: Securing GenAI
Report: Voice of Practitioners 2024 – The True State of Secrets Security

Don't miss

CISA: Use Signal or other secure communications app
Another NetWalker affiliate sentenced to 20 years in prison
Why cybersecurity is critical to energy modernization
Cryptocurrency hackers stole $2.2 billion from platforms in 2024
CISA orders federal agencies to secure their Microsoft cloud environments

LunaSec

Spring4Shell: No need to panic, but mitigations are advised

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

Featured news

Resources

Don't miss