A critical vulnerability in Apache Tomcat allows remote code execution (RCE) on affected versions. Exploitation involves malicious PUT requests, followed by specific GET requests, requiring particular server conditions. While such attacks have been observed globally, successful exploitation is challenging. Organizations should upgrade to patched versions (9.0.99, 10.1.35, or 11.0.3) and implement security measures for protection.

Week in review: Microsoft SharePoint servers under attack, landing your first cybersecurity job
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft pins on-prem SharePoint attacks on Chinese threat actors As