all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Attackers Focus on Apache OFBiz Bug

Add to bookmarks
Jan. 9, 2024, 8:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Attackers are targeting a critical authentication bypass vulnerability in the Apache OFBiz open-source ERP platform, which is included in a number of third-party applications.


Apache released a fix for the vulnerability (CVE-2023-51467) in December after researchers at SonicWall discovered the bug and disclosed it to the maintainers. In the days since the fix was made available, attackers have been attempting to exploit the vulnerability, and SonciWall’s data shows more than 4,000 exploit attempts per day since the beginning of January. …

apache apache ofbiz applications attackers authentication authentication bypass bug bypass bypass vulnerability critical cve december erp fix focus maintainers ofbiz party platform researchers sonicwall targeting third third-party vulnerability

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Managed Detection and Response in 2023 20 minutes ago | malware.news
analysis and response center collecting +26
Dynamic Link Dazzle: Unveiling the Dark Side of DLLs 50 minutes ago | malware.news
application apt apt groups chinese +20
KapeKa Backdoor: Russian Threat Actor Group’s Recent Attacks an hour ago | malware.news
actor attacks backdoor cyber +16
Why space exploration is important for Earth and its future: Q&A with David Eicher an hour ago | malware.news
amp article benefits beyond +18
ISC Stormcast For Tuesday, April 30th, 2024 https://isc.sans.edu/podcastdetail/8960, (Tue, Apr 30th) 6 hours ago | malware.news
topic
Report on the First Scientific Experiment to Test the Impact of Generative AI on Complex, … 6 hours ago | malware.news
boston business consultants consulting +16
2023 Activities Summary of SectorD groups (KOR) 6 hours ago | malware.news
Relaying Kerberos Authentication from DCOM OXID Resolving 8 hours ago | malware.news
access active directory adcs administrator +21
SecretCalls Spotlight: A Formidable App of Notorious Korean Financial Fraudster (Part 1) 9 hours ago | malware.news
app article blog financial +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)

@ Swiss Re | Madrid, M, ES
View on infosec-jobs.com

Alternant - Consultant HSE (F-H-X)

@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
View on infosec-jobs.com

Senior Risk/Cyber Security Analyst

@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
View on infosec-jobs.com

Offensive Security Engineer (University Grad)

@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
View on infosec-jobs.com

Senior IAM Security Engineer

@ Norfolk Southern | Atlanta, GA, US, 30308
View on infosec-jobs.com
View more jobs