Chinese APT Hackers Used Log4Shell Exploit to Target Academic Institution

30 December 2021

A never-before-seen China-based targeted intrusion adversary dubbed Aquatic Panda has been observed leveraging critical flaws in the Apache Log4j logging library as an access vector to perform various post-exploitation operations, including reconnaissance and credential harvesting on targeted systems. Cybersecurity firm CrowdStrike said the infiltration, which was ultimately foiled, was aimed at an unnamed “large academic institution.”

Read full article on The Hacker News

Date:

30 December 2021

Categorie(s):

NEWS

Tag(s):

Academics, APT, Chinese, Cyber Attack, Cyber Threats

Zscaler addresses rising phishing threats and AI security challenges8 May 2024
IntelBroker Hacker Claims Breach of Top Cybersecurity Firm, Selling Access8 May 2024
#RSAC: Three Strategies to Boost Open-Source Security8 May 2024
RSAC: Researchers Share Lessons from the World’s First AI Security Incident Response Team8 May 2024
RSAC: CISA Launches Vulnrichment Program to Address NVD Challenges8 May 2024