It can be embedded in Java applications or run in client-server mode. It’s used in various platforms including Spring Boot and ThingWorks. H2 is a popular open-source database management system written in Java.
It has yet to receive an official severity score. The critical vulnerability, exploits the same root cause, though it’s not believed to be as severe as Log4j. In the wake of the Log4Shell vulnerability, security researchers warned similar exploits could soon emerge. One of these Log4j-like vulnerabilities was discovered in the H2 database ( CVE-2021-42392 ) by the JFrog security team this week. JFrog Jumps On Log4j-Like H2 Database Vulnerability “Any service connected to the internet and not yet patched for Log4j vulnerabilities is vulnerable to hackers, and VMware strongly recommends taking immediate action,” a VMware spokesperson wrote in a statement. In response to the breach, both the NHS and VMware urged users to patch affected systems and/or implement workarounds cited in the security advisory. Microsoft’s findings shed new light on the earlier NHS Digital alert, which warned attackers were “actively targeting Log4Shell vulnerabilities in VMware Horizon servers in an effort to establish web shells.” These web shells can then be used by an attacker to deploy malware, ransomware, and exfiltrate data, the advisory said.
Identified earlier this month by Twitter group MalwareHunterTeam, NightSky is a relatively new ransomware gang that began operating late last year. “Our investigation shows that successful intrusions in these campaigns led to the deployment of the NightSky ransomware,” Microsoft reported.
Microsoft Monday confirmed a China-based ransomware operator - tracked as DEV-0401 - had exploited the vulnerability ( CVE-2021-44228) in VMware Horizon as early as January 4. Hackers are actively exploiting a Log4Shell vulnerability in VMware‘s Horizon virtual desktop platform to deploy ransomware and other malicious packages, U.K.’s National Health Service (NHS) warned last week.
0 kommentar(er)
