Blueliv 2022-03-31 13:59:39

Blueliv 2022-03-31 13:59:39

| | Blog
An RCE vulnerability affecting Spring Core’s JDK 9 and later has become a trending topic in cybersecurity networks during the past couple days. This discovery, compared by some to the Log4Shell vulnerability, generated a lot of confusion and even got mistook with a different vulnerability affecting Spring Cloud, which got ... Read More

The 10 biggest cyber threats facing the financial services industry

| | Blog, Threat Intelligence
Considering the sensitive information it holds, it’s no wonder that the financial services industry continues to be one of the most targeted sectors by today’s cybercriminals. Recent societal and technological changes in the last year have only made matters worse. The ongoing COVID-19 pandemic has created a breeding ground for ... Read More
The most critical vulnerabilities right now – November 2021

The most critical vulnerabilities right now – November 2021

| | Blog, Threat Intelligence
From SolarWinds to the first of many Microsoft 0-days, the first half of 2021 saw thousands of critical CVEs impact software and solutions from some of the world’s leading and most reputable vendors (as highlighted in our previous CVE analysis blog here). In the months since, Blueliv has observed over ... Read More
CVE-2021-41773 – Apache web server Path traversal

CVE-2021-41773 – Apache web server Path traversal

| | Blog, Threat Intelligence
This past Monday, October 4th, Apache disclosed a vulnerability introduced on Apache HTTP Server 2.4.49 known as CVE-2021-41773. At the same time, update 2.4.50 was released, fixing this vulnerability. The vulnerability allows an attacker to bypass Path traversal protections, using encoding, and read arbitrary files on the webserver’s file system ... Read More
Blueliv supports TIBER-EU for threat intelligence-based ethical red-teaming

Blueliv supports TIBER-EU for threat intelligence-based ethical red-teaming

| | Blog, Threat Intelligence
TIBER-EU is the European framework for threat intelligence-based ethical red-teaming and the first EU-wide guide on how authorities, threat intelligence and red-team providers should collaborate with different organizations to help improve their cyber resilience. Thanks to its threat intelligence offering, Blueliv is well-positioned to create attack scenarios in line with ... Read More

Blueliv joins the Cyber Threat Alliance

Blueliv is pleased to confirm it has become a member of the Cyber Threat Alliance. A core part of Blueliv’s DNA, this new membership will allow the company to better build and serve a collaborative ecosystem, and work closely with like-minded members to contribute to the organization’s wider efforts to ... Read More