LunaSec

Spring4Shell: No need to panic, but mitigations are advised

March 31, 2022

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively …

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

December 10, 2021

A critical zero-day vulnerability in Apache Log4j (CVE-2021-44228), a widely used Java logging library, is being leveraged by attackers in the wild – for now, …

Resources

Download: Strengthening Identity Security whitepaper
Webinar: The BAS Summit 2025: Redefining Attack Simulation through AI
eBook: A quarter century of Active Directory

Don't miss

How one quick AI check can leak your company’s secrets
Salesforce investigates new incident echoing Salesloft Drift compromise
Security gap in Perplexity’s Comet browser exposed users to system-level attacks
MacOS DigitStealer malware poses as DynamicLake, targets Apple Silicon M2/M3 devices
Is your password manager truly GDPR compliant?

LunaSec

Spring4Shell: No need to panic, but mitigations are advised

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

Featured news

Resources

Don't miss