
Blueliv 2022-03-31 13:59:39
An RCE vulnerability affecting Spring Core’s JDK 9 and later has become a trending topic in cybersecurity networks during the past couple days. This discovery, compared by some to the Log4Shell vulnerability, generated a lot of confusion and even got mistook with a different vulnerability affecting Spring Cloud, which got ... Read More
The 10 biggest cyber threats facing the financial services industry
Considering the sensitive information it holds, it’s no wonder that the financial services industry continues to be one of the most targeted sectors by today’s cybercriminals. Recent societal and technological changes in the last year have only made matters worse. The ongoing COVID-19 pandemic has created a breeding ground for ... Read More

The most critical vulnerabilities right now – November 2021
From SolarWinds to the first of many Microsoft 0-days, the first half of 2021 saw thousands of critical CVEs impact software and solutions from some of the world’s leading and most reputable vendors (as highlighted in our previous CVE analysis blog here). In the months since, Blueliv has observed over ... Read More

CVE-2021-41773 – Apache web server Path traversal
This past Monday, October 4th, Apache disclosed a vulnerability introduced on Apache HTTP Server 2.4.49 known as CVE-2021-41773. At the same time, update 2.4.50 was released, fixing this vulnerability. The vulnerability allows an attacker to bypass Path traversal protections, using encoding, and read arbitrary files on the webserver’s file system ... Read More

Blueliv supports TIBER-EU for threat intelligence-based ethical red-teaming
TIBER-EU is the European framework for threat intelligence-based ethical red-teaming and the first EU-wide guide on how authorities, threat intelligence and red-team providers should collaborate with different organizations to help improve their cyber resilience. Thanks to its threat intelligence offering, Blueliv is well-positioned to create attack scenarios in line with ... Read More
Blueliv joins the Cyber Threat Alliance
Blueliv is pleased to confirm it has become a member of the Cyber Threat Alliance. A core part of Blueliv’s DNA, this new membership will allow the company to better build and serve a collaborative ecosystem, and work closely with like-minded members to contribute to the organization’s wider efforts to ... Read More