Head Topics

Iranian cyberspies used Log4j to break into a US govt org

Danmark Nyheder Nyheder

Iranian cyberspies used Log4j to break into a US govt org
Danmark Seneste Nyt,Danmark Overskrifter
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 44 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 21%
  • Publisher: 61%

Iranian cyberspies exploited Log4j to break into a US govt network

The crooks also changed the password for the local administrator account on several hosts as a plan B just in case the rogue domain admin account was flagged and terminated. They tried to dump the Local Security Authority Subsystem Service process, but were stopped by antivirus code installed on the machines, we're told.

In the alert, CISA and the FBI suggest several mitigation measures organizations should take to improve their security posture. First on the list — for the love of god, people — patch the damn VMware Horizon systems to ensure they aren't running buggy Log4j code."If updates or workarounds were not promptly applied following VMware's, treat those VMware Horizon systems as compromised," the Feds noted.

Despite it being almost a year since the discovery of Log4Shell,"I'm not surprised we are seeing reports like today's CISA and FBI advisory," Chainguard CEO and co-founder Dan Lorenc told"Log4shell is endemic and it's going to be around forever," he added."It will remain in every attacker's toolbox and continue to be used to gain access or for lateral movement for the foreseeable future.

Vi har opsummeret denne nyhed, så du kan læse den hurtigt. Hvis du er interesseret i nyheden, kan du læse hele teksten her. Læs mere:

TheRegister /  🏆 67. in UK

Danmark Seneste Nyt, Danmark Overskrifter

Similar News:Du kan også læse nyheder, der ligner denne, som vi har indsamlet fra andre nyhedskilder.

Meghan Markle’s Latest Podcast Features A Protestor From The Original Iranian ResistanceMeghan Markle’s Latest Podcast Features A Protestor From The Original Iranian ResistanceMeghan Markle's latest podcast could not be more timely, as she speaks with a protestor from the original Iranian Resistance.
Læs mere »

Iran regime 'plots to kidnap or kill British enemies,' says MI5 chief as he warns of 'direct threats' to UKIran regime 'plots to kidnap or kill British enemies,' says MI5 chief as he warns of 'direct threats' to UKThe head of MI5 has said the Iranian regime has 'ambitions' to kidnap or kill Britons it sees as 'enemies', and warned of 'very real' threats posed by hostile states.
Læs mere »

Jafar Panahi’s “No Bears” reflects the bleakness of life in IranJafar Panahi’s “No Bears” reflects the bleakness of life in IranWayward Iranian film-makers are subject to travel bans, interrogations and threats. “Start choosing your cemetery,” reads one sent to a director who fled abroad
Læs mere »

Everton and Frank Lampard slip back into a familiarly tetchy place for the winter breakEverton and Frank Lampard slip back into a familiarly tetchy place for the winter breakLosing twice to Bournemouth in five days has restarted the debate over whether Frank Lampard can hack it as the Everton manager...
Læs mere »

Blackpool named one of best places for a Christmas break in UKBlackpool named one of best places for a Christmas break in UKThe coastal resorts was named behind only London and Edinburgh in the TripAdvisor survey
Læs mere »



Render Time: 2025-04-08 20:56:21