Others, including The DFIR Report (Opens in a new window) and Red Canary (Opens in a new window), reported similar activity that day.Įxploiting the Log4Shell vulnerabilities to deploy Cobalt Strike makes sense. Huntress says that "an unrelated Managed Antivirus detection (Microsoft Defender) tipped our ThreatOps team to new exploitation of the Log4Shell vulnerability in VMware Horizon" on Jan.
(Among other things.) But hackers often use cracked versions of the software to conduct attacks, too. VMware describes (Opens in a new window) Horizon as a tool offering "efficient and secure delivery of virtual desktops and apps from on-premises to the cloud."Ĭobalt Strike (Opens in a new window), meanwhile, is a command and control framework security professionals use to assess an organization's ability to respond to malicious activity on its network. Log4Shell refers to several high severity vulnerabilities in the Log4j package used by countless Java developers to create logs for their applications. Huntress reports (Opens in a new window) that attackers have started to exploit the Log4Shell vulnerabilities revealed in December 2021 on servers running VMware Horizon to deploy Cobalt Strike. How to Set Up Two-Factor Authentication.
How to Record the Screen on Your Windows PC or Mac.How to Convert YouTube Videos to MP3 Files.How to Save Money on Your Cell Phone Bill.How to Free Up Space on Your iPhone or iPad.How to Block Robotexts and Spam Messages.
0 kommentar(er)
