#ApacheFlink

CISA Warns of Actively Exploited Apache Flink Security Vulnerability

by

May 23, 2024 at 01:39PM The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security flaw affecting Apache Flink to the Known Exploited Vulnerabilities catalog due to active exploitation. Tracked as CVE-2020-17519, the issue allows unauthorized access to sensitive information. Federal agencies are advised to apply the latest fixes by June 13, 2024, to … Read more

Cryptominers Targeting Misconfigured Apache Hadoop and Flink with Rootkit in New Attacks

by

January 12, 2024 at 03:09AM Cybersecurity researchers have discovered a new attack using misconfigurations in Apache Hadoop and Flink to deploy cryptocurrency miners and conceal them with rootkits. The attackers exploit flaws to run remote code on targeted systems and hide mining processes. Mitigations include deploying agent-based security solutions to detect and prevent such attacks. … Read more