![]() Rapid7 services and research teams expect to see a continued strong upward trend in attacker activity directed at VMware Horizon instances vulnerable to Log4Shell exploits. The activity our teams are observing is similar to observed threat activity detailed by NHS Digital. Detailsīeginning Friday, January 14, 2022, Rapid7 Managed Detection & Response (MDR) began monitoring a sudden increase in VMware Horizon exploitation. We’re sharing our observed activities and indicators of compromise (IOCs) related to this activity. ![]() This post is co-authored by Charlie Stafford, Lead Security Researcher.Īttackers are actively targeting VMware Horizon servers vulnerable to Apache Log4j CVE-2021-44228 (Log4Shell) and related vulnerabilities that were patched in December 2021. ![]() Post Syndicated from Glenn Thorpe original ![]()
0 Comments
Leave a Reply. |