Previous log4j patch insufficient in some situations. New CVE posted and new log4j released 2.16. Security News & Discussion

---

• Previous log4j patch insufficient in some situations. New CVE posted and new log4j released 2.16.
• Security Analysis of the 2nd Log4j CVE published earlier (CVE-2021-45046 / Log4Shell2)
• Log4J – A Look into Threat Actors Exploitation Attempts
• log4j-jndi-be-gone: A simple mitigation for CVE-2021-44228 - log4j
• IPs exploiting the log4j2 CVE-2021-44228 detected by the crowdsec community
• Remote Deserialization Bug in Microsoft's RDP Client through Smart Card Extension (CVE-2021-38666)
• Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
• log4jail - A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) attacks
• Yara rules to look for Log4J usage
• fully independent exploit does not require any 3rd party binaries. The exploit spraying the payload to all possible logged HTTP Headers such as
• Payload extracted from process dump of Trojan chrome installer. Can't find much info about this virus online other than its been around a long time.
• TCP reverse shell written in Rust
• Invoke-noPac - CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter

Previous log4j patch insufficient in some situations. New CVE posted and new log4j released 2.16. Posted: 14 Dec 2021 10:26 AM PST submitted by /u/fiasco_averted [link] [comments]

Security Analysis of the 2nd Log4j CVE published earlier (CVE-2021-45046 / Log4Shell2) Posted: 14 Dec 2021 07:44 PM PST submitted by /u/freeqaz [link] [comments]

Log4J – A Look into Threat Actors Exploitation Attempts Posted: 14 Dec 2021 02:03 AM PST submitted by /u/spyduecap [link] [comments]

log4j-jndi-be-gone: A simple mitigation for CVE-2021-44228 - log4j Posted: 14 Dec 2021 10:35 PM PST submitted by /u/digicat [link] [comments]

IPs exploiting the log4j2 CVE-2021-44228 detected by the crowdsec community Posted: 14 Dec 2021 11:03 AM PST submitted by /u/klausagnoletti [link] [comments]

Remote Deserialization Bug in Microsoft's RDP Client through Smart Card Extension (CVE-2021-38666) Posted: 14 Dec 2021 04:24 AM PST submitted by /u/0xdea [link] [comments]

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Posted: 13 Dec 2021 10:53 PM PST submitted by /u/0xdea [link] [comments]

log4jail - A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) attacks Posted: 14 Dec 2021 01:46 PM PST submitted by /u/mufeedvh [link] [comments]

Yara rules to look for Log4J usage Posted: 14 Dec 2021 10:08 AM PST submitted by /u/timb_machine [link] [comments]

fully independent exploit does not require any 3rd party binaries. The exploit spraying the payload to all possible logged HTTP Headers such as Posted: 13 Dec 2021 11:24 PM PST submitted by /u/EmirgianDark [link] [comments]

Payload extracted from process dump of Trojan chrome installer. Can't find much info about this virus online other than its been around a long time. Posted: 14 Dec 2021 08:52 AM PST submitted by /u/Tear-Sensitive [link] [comments]

TCP reverse shell written in Rust Posted: 14 Dec 2021 07:54 AM PST submitted by /u/KmancXC [link] [comments]

Invoke-noPac - CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter Posted: 13 Dec 2021 12:36 PM PST submitted by /u/v1brio [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States