Java Exploit Gives Way to Botnet and Spyware Company Shuts Down
Spring4Shell Botnet Flaw
by Artie Kaye
The Spring4Shell Java exploit is currently being used to help propagate the Mirai botnet. Mirai targets Linux-based network devices to infect, adding them to the botnet. These bots can be deployed to obfuscate where an attack originated from by channeling the commands through an infected device. Spring4Shell currently affects Spring Framework versions 5.2.20 and 5.3.18 and earlier, in addition to Java Development Kit version 9 or higher.
This flaw is listed as CVE-2022-22965.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)
Spyware Company Shuts Down
by Artie Kaye
The German spyware company FinFisher has declared insolvency. The company ran into legal troubles after allegedly violating foreign trade laws. Human rights groups see this as a victory for citizens’ privacy.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)