Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Security

mend

Spring4Shell Zero-Day Vulnerability: Information and Remediation for CVE-2022-22965

Mar 31, 2022 By Daniel Elkabes In Mend

Overview The internet is abuzz with the disclosure of CVE-2022-22965, an RCE vulnerability in Spring, one of the most popular open-source frameworks for Java applications in use today. Known as “Spring4Shell” or “SpringShell”, the zero-day vulnerability has triggered widespread concern about the possibility of a wave of malicious attacks targeting vulnerable applications. Is this Log4j 2.0?

Read Post
Trustwave

Trustwave's Action Response: CVE-2022-22965 and CVE-2022-22963

Mar 31, 2022 By Trustwave In Trustwave

Trustwave security and engineering teams are actively investigating the vulnerabilities CVE-2022-22965 (also referenced by other vendors at Spring4Shell / SpringShell) and CVE-2022-22963 and potential exploits. We are diligently watching over our clients for exposure and associated attacks and are taking action with approved mitigation efforts. At this time, Trustwave infrastructure and products have not been adversely affected by the vulnerability / exploits.

Read Post
synopsys

BYOD in the workforce: MDM and MAM with Microsoft Intune

Mar 31, 2022 By Prasanthi Akella In Synopsys
Mobile device management and mobile application management are critical to securing your organization’s data and IoT devices. According to recent research, the average household has 25 connected devices, an increase from 11 in 2019. This widespread adoption, along with a global pandemic, has changed the way we operate and communicate, both personally and professionally.
Read Post
netskope

Catching A Wave, Standing Up on My Surfboard: How Cloud Threat Exchange Saves My SOC From Drowning (For Now)

Mar 31, 2022 By Jason Barnes In Netskope

We have built a Security Operations Center at Netskope in short order. Facing the vast expanse of the Security Operations ocean, I grabbed my board with my team and focused on doing a few things really well. We documented workflows, expanded our visibility, and tuned monitoring systems. We paddled out from shore, braving the shark-infested waters of the threat landscape.

Read Post
Arctic Wolf

CIS Critical Security Controls: Unpacking the Significant Changes in the Latest Version

Mar 31, 2022 By Tyler Desjardins In Arctic Wolf
“May you live in interesting times.” Cybersecurity professionals live this phrase every day. From supply-chain attacks, pervasive exposure from zero-day vulnerabilities, or the dramatic rise in ransomware, we undoubtedly live—and work—in interesting times.
Read Post
devo

Detecting Spring4Shell 0-day Vulnerability Using Devo (updated 4/7/22)

Mar 31, 2022 By By The Devo Security Team In Devo

Editor’s note: Latest update, April 6, 2022, 7:30 p.m. U.S. EDT — This post now includes an example query to aid SOC teams in generating alerts for their specific WAF data sources. See the section “Create New Web Application Firewall (WAF) Rules” for details. A critical zero-day vulnerability in Java’s popular Spring Core Framework is being actively targeted, according to multiple reports submitted to Bleeping Computer.

Read Post
sysdig

Critical Vulnerability in Spring Core: CVE-2022-22965 a.k.a. Spring4Shell

Mar 31, 2022 By Stefano Chierici In Sysdig

After the Spring cloud vulnerability reported yesterday, a new vulnerability called Spring4shell CVE-2022-22965 was reported this time on the very popular Java framework Spring Core on JDK9+. The vulnerability is always a remote code execution (RCE) which would permit attackers to execute arbitrary code on the machine and compromise the entire host.

Read Post

This Week in VulnDB - highlight on sprint4shell and dep supply chain vulnerability

Mar 31, 2022 By Snyk In Snyk
Welcome to This Week in VulnDB, Each episode we will look through some of the newer vulnerabilities in the Snyk vulnerability database, looking at emerging trends in attack vectors appearing in programming languages, platforms and ecosystems.
View Video
veracode

Spring Framework Remote Code Execution (CVE-2022-22965)

Mar 31, 2022 By The Veracode Research Team In Veracode

Details of a zero-day vulnerability in Spring Framework were leaked on March 29, 2022 but promptly taken down by the original source. Although much of the initial speculation about the nature of the vulnerability was incorrect, we now know that the vulnerability has the potential to be quite serious depending on your organization’s use of Spring Framework. There is also a dedicated CVE 2022-22965 assigned to this vulnerability. We will keep this blog updated as new information comes up.

Read Post

SecurityScorecard Analysis of Lapsus$ Threat Group

Mar 31, 2022 By SecurityScorecard In SecurityScorecard
SecurityScorecard’s CISO Mike Wilkes and Threat Researcher Ryan Slaney discuss their latest insights on the Lapsus$ threat group, the recent Okta breach, and what CISOs should do to protect their organizations. SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 12 million companies continuously rated. The company is headquartered in New York and operates in 64 countries around the globe.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.