A federal agency server was compromised by a suspected Iranian advanced persistent threat (APT) group via the Log4j vulnerability. The threat actors breached a VMware Horizon server, installed cryptomining software, accessed domain control, compromised credentials, and installed a reverse proxy service. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation urged affected organizations to assume compromise and initiate threat hunting activities.
UK’s Legal Aid Agency Experiences Cyberattack
A UK Ministry of Justice executive agency was targeted in a cyberattack, compromising its systems. The incident highlights vulnerabilities in cybersecurity, prompting a review of
