Skip to main content

Microsoft detects Spring4Shell attacks across its cloud services

posted onApril 5, 2022
by l33tdawg
Bleeping Computer
Credit: Bleeping Computer

Microsoft said that it's currently tracking a "low volume of exploit attempts" targeting the critical Spring4Shell (aka SpringShell) remote code execution (RCE) vulnerability across its cloud services.

The Spring4Shell vulnerability (tracked as CVE-2022-22965) impacts the Spring Framework, described as the "most widely used lightweight open-source framework for Java."

"Microsoft regularly monitors attacks against our cloud infrastructure and services to defend them better," the Microsoft 365 Defender Threat Intelligence Team said. "Since the Spring Core vulnerability was announced, we have been tracking a low volume of exploit attempts across our cloud services for Spring Cloud and Spring Core vulnerabilities."

Source

Tags

Microsoft Security

You May Also Like

Recent News

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th

Friday, June 7th