apache

Who is behind the new malware campaign and what are its goals? Aqua Security identified a new malware campaign targeting the Apache big data stack, specifically Hadoop, Druid, and Flink. Attackers use vulnerabilities and incorrect settings in cloud-based Honeypots to launch these attacks. Only...

Агентство кибербезопасности и безопасности инфраструктуры США (CISA) добавило шесть уязвимостей в свой каталог известных эксплуатируемых уязвимостей (KEV), ссылаясь на свидетельства активного использования. Сюда входит CVE-2023-27524 (оценка CVSS: 8,9), уязвимость высокой степени серьезности...

The agency called on government agencies to urgently update the software to avoid devastating cyber attacks. The U.S. Cybersecurity and Infrastructure Protection Agency (CISA) has updated its Known Exploited Vulnerability (KEV) catalog to include 6 vulnerabilities affecting Apple, Adobe...

The Apache OFBiz RCE vulnerability can cost businesses and reputations. SonicWall has recorded thousands of daily attempts to exploit Apache OFBiz zero-day vulnerabilities for almost two weeks. The flaw was first made public on December 26, after which the number of exploitation attempts...

You should update as soon as possible to avoid leaks of corporate information. A critical zero-day vulnerability has been discovered in the Apache OFBiz system, which is widely used for enterprise resource planning (ERP). It allows you to bypass authentication systems and exposes the business...