6/1/22 Teqworks Managed Security has been monitoring the development of an active zero-day threat, referred to as “Follina” (CVE-2022-30190). This vulnerability was originally identified on May 27, and security platforms continue to update as details emerge. In short, an attacker can utilize the Microsoft Support Diagnostic Tool (MSDT) to run arbitrary code on a computer […]
On Dec. 9, 2021, a remote code execution (RCE) vulnerability CVE-2021-44228 in Apache log4j 2 was identified and attackers are already actively exploiting this vulnerability. Since the advent of this issue, Teqworks has been consulting security partners and evaluating our and your systems for exposure to this vulnerability. Teqworks internal systems do not use Apache log4j library.