LunaSec

Spring4Shell: No need to panic, but mitigations are advised

March 31, 2022

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

December 10, 2021

A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, …

Resources

Download: Strengthening Identity Security whitepaper
Webinar: The BAS Summit 2025: Redefining Attack Simulation through AI
eBook: A quarter century of Active Directory

Don't miss

What 35 years of privacy law say about the state of data protection
40 open-source tools redefining how security teams secure the stack
Password habits are changing, and the data shows how far we’ve come
Product showcase: Tuta – secure, encrypted, private email
Henkel CISO on the messy truth of monitoring factories built across decades

LunaSec

Spring4Shell: No need to panic, but mitigations are advised

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

Featured news

Resources

Don't miss