This past October, Apache issued a critical advisory addressing CVE-2023-46604, a vulnerability involving the deserialization of untrusted data in Apache. On 2 November, the Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2023-46604 to its known exploited list, KEV Catalog, indicating this vulnerability's high risk and impact. Fortiguard Labs also released an outbreak alert and a threat signal report about the active exploitation of CVE-2023-46604, providing more details and
apache (2)
Activity Summary - Week Ending on 20 May 2022:
- Red Sky Alliance identified 33,648 connections from new IP’s checking in with our Sinkholes
- InterServer Inc. has Issues
- Analysts identified 1,553 new IP addresses participating in various Botnets
- Sality remains our top Malware Variant
- Apache LogJ4 and LogJ4 2 still an issue / CVE-2021-44228
- Nerbian RAT
- Blind Eagle APT
- SEGs and ICES
- Wizard Spider in Russia
Link to full report: IR-22-140-001_weekly140.pdf