Recherche : [CVE-2023-46604]

CVE-2023-46604 (Apache ActiveMQ) Vulnerability Exploited to Infect Systems With Cryptominers and Rootkits https://www.trendmicro.com/en_us/research/23/k/cve-2023-46604-exploited-by-kinsing.html

22/11/2023 17:15:12

We uncovered the active exploitation of the Apache ActiveMQ vulnerability CVE-2023-46604 to download and infect Linux systems with the Kinsing malware (also known as h2miner) and cryptocurrency miner.

Suspected Exploitation of Apache ActiveMQ CVE-2023-46604 https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/

04/11/2023 16:23:08

On October 27, Rapid7 Managed Detection & Response identified suspected exploitation of Apache ActiveMQ CVE-2023-46604 in 2 separate customer environments.

Cyber experts and officials raise alarms about exploits against Citrix and Apache productsoited vulnerability (KEV) list. https://therecord.media/cyber-officials-raise-alarms-citrix-apache?s=09

03/11/2023 19:16:29

Several new vulnerabilities with critical severity scores are causing alarm among experts and cyber officials.

Zero-day bugs affecting products from Citrix and Apache have recently been added to the Cybersecurity and Infrastructure Security Agency’s (CISA) known exploited vulnerability (KEV) list.

Incident responders at the cybersecurity company Rapid7 warned of hackers connected to the HelloKitty ransomware exploiting a vulnerability affecting Apache ActiveMQ, classified as CVE-2023-46604. Apache ActiveMQ is a Java-language open source message broker that facilitates communication between servers.

CVE-2023-46604 https://attackerkb.com/topics/IHsgZDE3tS/cve-2023-46604/rapid7-analysis

01/11/2023 18:53:18

Apache ActiveMQ is a message broker service, designed to act as a communication bridge between disparate services. Developed in Java, it can broker multiple pr…

Liens par page

Filtres