topic HelloKitty Ransomware Group Exploiting Apache ActiveMQ Vulnerability CVE-2023-46604 in Threats https://community.isc2.org/t5/Threats/HelloKitty-Ransomware-Group-Exploiting-Apache-ActiveMQ/m-p/64134#M952 <P>Dear All,</P><P>&nbsp;</P><P>Cybersecurity researchers are warning of suspected exploitation of a recently disclosed critical security flaw in the Apache ActiveMQ open-source message broker service that could result in remote code execution.</P><P>"In both instances, the adversary attempted to deploy ransomware binaries on target systems in an effort to ransom the victim organizations," cybersecurity firm Rapid7<SPAN>&nbsp;</SPAN><A href="https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/" target="_blank" rel="noopener">disclosed</A><SPAN>&nbsp;</SPAN>in a report published Wednesday.</P><P>&nbsp;</P><P><A href="https://thehackernews.com/2023/11/hellokitty-ransomware-group-exploiting.html" target="_blank">https://thehackernews.com/2023/11/hellokitty-ransomware-group-exploiting.html</A></P><P>&nbsp;</P><P><A href="https://nvd.nist.gov/vuln/detail/CVE-2023-46604" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2023-46604</A></P><P>&nbsp;</P><P><A href="https://activemq.apache.org/security-advisories.data/CVE-2023-46604" target="_blank">https://activemq.apache.org/security-advisories.data/CVE-2023-46604</A></P><P>&nbsp;</P><P>&nbsp;</P> Thu, 02 Nov 2023 18:44:44 GMT Kyaw_Myo_Oo 2023-11-02T18:44:44Z HelloKitty Ransomware Group Exploiting Apache ActiveMQ Vulnerability CVE-2023-46604 https://community.isc2.org/t5/Threats/HelloKitty-Ransomware-Group-Exploiting-Apache-ActiveMQ/m-p/64134#M952 <P>Dear All,</P><P>&nbsp;</P><P>Cybersecurity researchers are warning of suspected exploitation of a recently disclosed critical security flaw in the Apache ActiveMQ open-source message broker service that could result in remote code execution.</P><P>"In both instances, the adversary attempted to deploy ransomware binaries on target systems in an effort to ransom the victim organizations," cybersecurity firm Rapid7<SPAN>&nbsp;</SPAN><A href="https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/" target="_blank" rel="noopener">disclosed</A><SPAN>&nbsp;</SPAN>in a report published Wednesday.</P><P>&nbsp;</P><P><A href="https://thehackernews.com/2023/11/hellokitty-ransomware-group-exploiting.html" target="_blank">https://thehackernews.com/2023/11/hellokitty-ransomware-group-exploiting.html</A></P><P>&nbsp;</P><P><A href="https://nvd.nist.gov/vuln/detail/CVE-2023-46604" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2023-46604</A></P><P>&nbsp;</P><P><A href="https://activemq.apache.org/security-advisories.data/CVE-2023-46604" target="_blank">https://activemq.apache.org/security-advisories.data/CVE-2023-46604</A></P><P>&nbsp;</P><P>&nbsp;</P> Thu, 02 Nov 2023 18:44:44 GMT https://community.isc2.org/t5/Threats/HelloKitty-Ransomware-Group-Exploiting-Apache-ActiveMQ/m-p/64134#M952 Kyaw_Myo_Oo 2023-11-02T18:44:44Z