all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Apache ActiveMQ Vulnerability (CVE-2023-46604) Continuously Being Exploited in Attacks

Add to bookmarks
Dec. 19, 2023, 1:31 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

In November 2023, AhnLab Security Emergency response Center (ASEC) published a blog post titled “Circumstances of the Andariel Group Exploiting an Apache ActiveMQ Vulnerability (CVE-2023-46604)” [1] which covered cases of the Andariel threat group exploiting the CVE-2023-46604 vulnerability to install malware. This post not only covered attack cases of the Andariel group but also those of HelloKitty Ransomware, Cobalt Strike, and Metasploit Meterpreter.


Since then, the Apache ActiveMQ vulnerability (CVE-2023-46604) has continued to be exploited by various threat actors. This …

activemq ahnlab andariel apache apache activemq apache activemq vulnerability asec attack attacks blog blog post cases center cve cve-2023-46604 emergency exploited exploiting install malware malware analysis november november 2023 response security threat threat group vulnerability

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Case of Malware Distribution Linking to Illegal Gambling Website Targeting Korean Web Server 45 minutes ago | malware.news
actor ahnlab asec case +31
Detecting XFinity/Comcast DNS Spoofing, (Mon, May 6th) 56 minutes ago | malware.news
access advertisements article block +14
RemcosRAT Distributed Using Steganography an hour ago | malware.news
ahnlab asec attacks center +24
Debugging WinDbg with Binary Ninja For Fun and Profit an hour ago | malware.news
api binary binary ninja code +14
RSAC 2024: Outfoxing SSO: Bypassing modern authentication 2 hours ago | malware.news
abuse adversary article authentication +17
CVE-2024-3661, a.k.a. TunnelVision, Exposes a VPN Bypass Vulnerability 3 hours ago | malware.news
attackers bypass bypass vulnerability can +20
Alleged LockBit Ransomware Gang Leader Named 3 hours ago | malware.news
development dmitry yuryevich khoroshev gang impact +11
Defenders assemble: Time to get in the game 4 hours ago | malware.news
alliance article defenders game +8
Google Continues Mixing Generative AI into Cybersecurity 4 hours ago | malware.news
ai model cloud cloud service conference +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Penetration Tester and Operator, Junior

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com

Director, Security Operations & Risk Management

@ Live Nation Entertainment | Toronto, ON
View on infosec-jobs.com

IT and Security Specialist APAC (F/M/D)

@ Flowdesk | Singapore, Singapore, Singapore
View on infosec-jobs.com

Senior Security Controls Assessor

@ Capgemini | Washington, DC, District of Columbia, United States; McLean, Virginia, United States
View on infosec-jobs.com

GRC Systems Solution Architect

@ Deloitte | Midrand, South Africa
View on infosec-jobs.com

Cybersecurity Subject Matter Expert (SME)

@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States
View on infosec-jobs.com
View more jobs