Spring4Shell Vulnerability Exploited by Mirai Botnet - SecurityIT

1.0SecurityIT | Cyber Security Consultinghttps://www.show.it/en/SecurityIThttps://www.show.it/en/author/securityit/Spring4Shell Vulnerability Exploited by Mirai Botnet - SecurityIT | Cyber Security Consultingrich600338<blockquote class="wp-embedded-content" data-secret="I77oKFGWDb"><a href="https://www.show.it/en/spring4shell-vulnerability-exploited-by-mirai-botnet/">Spring4Shell Vulnerability Exploited by Mirai Botnet</a></blockquote><iframe sandbox="allow-scripts" security="restricted" src="https://www.show.it/en/spring4shell-vulnerability-exploited-by-mirai-botnet/embed/#?secret=I77oKFGWDb" width="600" height="338" title="“Spring4Shell Vulnerability Exploited by Mirai Botnet” — SecurityIT | Cyber Security Consulting" data-secret="I77oKFGWDb" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" class="wp-embedded-content"></iframe><script type="text/javascript"> /* <![CDATA[ */ /*! This file is auto-generated */ !function(d,l){"use strict";l.querySelector&&d.addEventListener&&"undefined"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!/[^a-zA-Z0-9]/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret="'+t.secret+'"]'),o=l.querySelectorAll('blockquote[data-secret="'+t.secret+'"]'),c=new RegExp("^https?:$","i"),i=0;i<o.length;i++)o[i].style.display="none";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute("style"),"height"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):"link"===t.message&&(r=new URL(s.getAttribute("src")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener("message",d.wp.receiveEmbedMessage,!1),l.addEventListener("DOMContentLoaded",function(){for(var e,t,s=l.querySelectorAll("iframe.wp-embedded-content"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute("data-secret"))||(t=Math.random().toString(36).substring(2,12),e.src+="#?secret="+t,e.setAttribute("data-secret",t)),e.contentWindow.postMessage({message:"ready",secret:t},"*")},!1)))}(window,document); //# sourceURL=https://www.show.it/wp-includes/js/wp-embed.min.js /* ]]> */ </script> http://feeds.feedburner.com/~ff/securityweek?d=yIl2AUoC8zA6880Cybersecurity firm Trend Micro on Friday confirmed some earlier reports that the new Spring4Shell vulnerability has been exploited by the Mirai botnet. Two critical vulnerabilities have been patched recently in the popular Java application development framework Spring: CVE-2022-22965 (aka Spring4Shell and SpringShell) and CVE-2022-22963. read more