Threat Intelligence Report regarding WSO2 vulnerability (CVE-2022-29464)

Content

On Tuesday, April 25, 2022, the Dutch National Cyber Security Center (NCSC) published a security advisory in response to published security patches for WSO2 products. In addition, active misuse of the vulnerability has been observed in the wild.

WSO2 is an open-source technology provider founded in 2005. It provides an enterprise platform for integrating application programming interfaces (APIs), applications and Web services locally and over the Internet.

The specific vulnerability for which this Threat Intelligence Report was written concerns CVE-2022-29464 which allows an attacker to place a backdoor on the affected system without authenticating.

In the Threat Intelligence Report, you will find details of these vulnerabilities

SECURITY INCIDENT BIJ UW ORGANISATIE?

De volgende 30 minuten zijn van cruciaal belang​!

De eerste 30 minuten na een cyber security incident zijn cruciaal, omdat een snelle en adequate reactie de schade kan beperken. Daarnaast kan verdere verspreiding van de aanval worden voorkomen en kan essentieel bewijsmateriaal veiliggesteld worden voor nader onderzoek.

Ons Computer Emergency Response Team (CERT) staat 24/7 klaar om bedrijven en organisaties te ondersteunen bij IT-beveiligingsincidenten.

Heeft uw bedrijf professionele hulp nodig bij een beveiligingsincident? 

SECURITY INCIDENT AT YOUR ORGANIZATION?

The next 30 minutes are crucial!

The first 30 minutes after a cyber security incident are crucial because a quick and adequate response can limit the damage.
In addition, further spread of the attack can be prevented and essential evidence can be secured for further investigation.

Our Computer Emergency Response Team (CERT) is available 24/7 to support businesses and organizations during IT security incidents.

Does your company need professional help with a security incident?