Log4j exploit hits again: vulnerable Unifi Network application (Ubiquiti)
Morphisec researchers have identified Unifi Network applications being targeted on a number of occasions. Based on prevention logs from Morphisec, the first appearance of successful exploitation occurred on January 20, 2022. The uniqueness of the attack is that the C2 is correlated to a previous SolarWind attack as reported by CrowdStrike.
REFERENCE:
ADVERSARY:
MALWARE FAMILY:
ATT&CK IDS:
T1059 - Command and Scripting Interpreter, T1095 - Non-Application Layer Protocol
*Beware click the link!
Freelance | Student
There is link : https://otx.alienvault.com/pulse/61f80e6ba4f4889784b007e0
Reply