all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PROPHET SPIDER Exploits Citrix ShareFile Remote Code Execution Vulnerability CVE-2021-22941 to Deliver Webshell

Add to bookmarks
March 7, 2022, 5:30 p.m. | Chris Nguyen - Eric Loui

Cybersecurity Blog | CrowdStrike provinggrounds.cs.sys

At the start of 2022, CrowdStrike Intelligence and CrowdStrike Services investigated an incident in which PROPHET SPIDER exploited CVE-2021-22941 — a remote code execution (RCE) vulnerability impacting Citrix ShareFile Storage Zones Controller — to compromise a Microsoft Internet Information Services (IIS) web server. The adversary exploited the vulnerability to deploy a webshell that enabled the […]

citrix code code execution cve exploits featured prophet spider remote code execution research & threat intel sharefile vulnerability webshell

Visit resource

More from provinggrounds.cs.sys / Cybersecurity Blog | CrowdStrike

Falcon Fund in Focus: Nagomi Helps Customers Maximize Their Cybersecurity Investments 1 week, 1 day ago | provinggrounds.cs.sys
assessment automated breached breaches +21
5 Best Practices to Secure AWS Resources 1 week, 3 days ago | provinggrounds.cs.sys
amazon amazon web services aws best practices +24
Porter Airlines Consolidates Its Cloud, Identity and Endpoint Security with CrowdStrike 2 weeks ago | provinggrounds.cs.sys
agent airline airlines architecture +24
Secure Your Staff: How to Protect High-Profile Employees’ Sensitive Data on the Web 2 weeks ago | provinggrounds.cs.sys
accounts adversary can counter +28
Deploying the Droids: Optimizing Charlotte AI’s Performance with a Multi-AI Architecture 2 weeks, 1 day ago | provinggrounds.cs.sys
architecture charlotte ai cybersecurity don +5
CrowdStrike Falcon Next-Gen SIEM Unveils Advanced Detection of Ransomware Targeting VMware ESXi Environments 2 weeks, 3 days ago | provinggrounds.cs.sys
access advanced companies credentials +27
CVE-2024-3400: What You Need to Know About the Critical PAN-OS Zero-Day 2 weeks, 6 days ago | provinggrounds.cs.sys
april block critical cve +15
CrowdStrike Falcon Wins Best EDR Annual Security Award in SE Labs Evaluations 2 weeks, 6 days ago | provinggrounds.cs.sys
adversary and response award crowdstrike +21
CrowdStrike Extends Identity Security Capabilities to Stop Attacks in the Cloud 3 weeks, 1 day ago | provinggrounds.cs.sys
active directory attackers attacks breaches +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India
View on infosec-jobs.com

Cyber Program Manager - CISO- United States – Remote

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Network Security Engineer (AEGIS)

@ Peraton | Virginia Beach, VA, United States
View on infosec-jobs.com

SC2022-002065 Cyber Security Incident Responder (NS) - MON 13 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com

Information Systems Security Engineer

@ Booz Allen Hamilton | USA, GA, Warner Robins (300 Park Pl Dr)
View on infosec-jobs.com
View more jobs