close-button
Recognized by Frost & Sullivan for Enabling Technology Leadership in the Global Digital Risk Protection (DRP) Industry
Download Award Writeup

CTM360 Hardening Guidelines

USE CASE: POST-EXPLOITATION IMPACT OF LOG4JSHELL VULNERABILITY

Log4j vulnerability (CVE-2021-44228) allows unauthenticated remote code execution, and is triggered when a specially crafted string provided by the attacker, through a variety of different input vectors, is parsed and processed by the Log4j vulnerable component.

Microsoft stated that a vast majority of post-exploitation activities have been observed and based on the nature of the vulnerability, once an attacker has full access and control of an application, they can perform a myriad of objectives including installing coin miners, Cobalt Strike to enable credential theft and lateral movement as well as exfiltrating data from compromised systems

For more details, Download attachment

Download Guide
GET YOUR ORGANIZATIONS CYBER SECURITY RISK RATING NOW!
Get Access

No Charge | No Commitment | Authorized Personnel only

KNOW YOUR ATTACK SURFACEINCLUDING 3rd PARTY RISK

Try our HackerView Platform now & MAKE YOURSELF A HARDER TARGET

Recent Post

Phishing Campaigns Abusing IPFS

March 01, 2023

Navigating the risks of ChatGPT on Financial Institutions

February 28, 2023

OTP/SMS Flood Attack

February 14, 2023

Why me? - target of phishing attacks

September 14, 2022

CXO Fraud - Scam emails originating from Virgin Media, Optimum and Cox.net

February 24, 2022

CTM360 Hardening Guidelines

January 11, 2022

Mitre Att&ck Mapping & Hardening Guidelines

November 25, 2021

SquirrelWaffle – Malicious Email Campaign

November 08, 2021

WhatsApp Account Hijacking

February 14, 2021

Do you need a Threat Intel feed of IOCs?

February 10, 2021
Company
Services
PLATFORMS
Contact us
CTM360 White Logo

Copyright © 2023 All rights reserved | Terms Of Use | PRIVACY POLICY | SITEMAP

Powered by EDXLABS

Subsidiaries: DMARC360 | PENTEST360 | MG360