custom applications – WindowsTechs.com

CISA adds Spring4Shell to list of exploited vulnerabilities

Posted on April 5, 2022 by Zeljka Zorz

It’s been almost a week since the Spring4Shell vulnerability (CVE-2022-22965) came to light and since the Spring development team fixed it in new versions of the Spring Framework. There have been reports of scanning, exploit attempts and attempts… Continue reading CISA adds Spring4Shell to list of exploited vulnerabilities→

Spring4Shell: New info and fixes (CVE-2022-22965)

Posted on April 1, 2022 by Help Net Security

In this video for Help Net Security, Ax Sharma, Senior Security Researcher at Sonatype, talks about the latest developments regarding Spring4Shell, the unauthenticated RCE zero-day vulnerability in Spring Core whose existence has finally been confirmed… Continue reading Spring4Shell: New info and fixes (CVE-2022-22965)→

Spring4Shell: No need to panic, but mitigations are advised

Posted on March 31, 2022 by Zeljka Zorz

Security teams around the world got another shock on Thursday when news of disclosure of a PoC for an unauthenticated RCE zero-day vulnerability in Spring Core, a massively popular framework for building modern Java-based enterprise applications, began… Continue reading Spring4Shell: No need to panic, but mitigations are advised→

Idaho inmates hacked prison system to add money to their accounts

Posted on July 30, 2018 by Zeljka Zorz

364 inmates at five correctional facilities in Idaho have managed to add nearly a quarter million dollars worth of credit to their JPay accounts by exploiting a vulnerability in the system, the Associated Press reported. What is JPay? JPay is a US-base… Continue reading Idaho inmates hacked prison system to add money to their accounts→