VMware has been steadily patching and updating since the Log4j vulnerability was disclosed, but it is incumbent on organizations to keep up with these patches. Once it is compromised, the attacker generally has immediate access to a variety of virtual applications and desktops. It’s a pricey setup that is widely used by prominent companies throughout the world, and was also widely opened up to remote workers during the Covid-19 pandemic. VMware Horizon has been a major target for hackers looking to exploit the Log4j vulnerability since late 2021. Of course, it also exfiltrates any insider information of interest that it comes across. A report from Cisco Talos Intelligence Group indicates that the group is looking to install multiple backdoors, move laterally through networks and steal credentials for long-term access. But in this case, the main interest appears to be cyber espionage. The Lazarus hackers are generally in pursuit of profit, used to fund the hermit kingdom’s government some estimates have its recent income from hacking rivaling what it generally makes from trade. Lazarus hackers hit upon system for exploiting Log4j vulnerability, targeting energy companies ![]() The group uses the Log4j vulnerability as an entry point to install backdoors, and then quietly steals confidential information and credentials. Victims fitting this profile have turned up around the world, but the Lazarus hackers appear to have a particular focus on companies in the United States, Canada and Japan.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |