#enterpriseenvironments

Gootloader Aims Malicious, Custom Bot Army at Enterprise Networks

by

November 6, 2023 at 04:50PM The Gootloader Group, previously known for being an initial access broker and malware operator, has developed a new tool called GootBot. GootBot spreads bots in enterprise environments after compromising them. This new tool is more destructive and difficult to detect. Each bot is controlled by its own command-and-control server, and … Read more

3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online

by

November 1, 2023 at 02:11PM Over 3,000 internet-exposed Apache ActiveMQ servers are vulnerable to a critical newly disclosed remote code execution (RCE) vulnerability, known as CVE-2023-46604. Exploiting this flaw allows attackers to execute arbitrary shell commands. The vulnerability affects various versions of ActiveMQ, but patches have been released to address the issue. Researchers have found … Read more