10 December 2023

Approximately 38% of applications employing the Apache Log4j library are utilizing a version susceptible to security issues, including the critical Log4Shell vulnerability (CVE-2021-44228), despite patches being available for over two years.

A critical privilege escalation vulnerability affecting macOS devices, specifically those with GOG Galaxy software installed, has been exploited by researchers. The vulnerability (CVE-2023-40713) carries a severity rating of 7.8 (High).

A post-exploitation tampering technique has been discovered, enabling malware to visually deceive iPhone users into believing their device is in Lockdown Mode. While Lockdown Mode reduces the attack surface, it does not prevent post-compromise malware execution.

jog4jexploitvulnerabilityiphonemmacprivilege excalationmacoshacklockdown


Subscribe to our newsletter to stay informed about CyberSecurity news. You can unsubscribe at any time.

More than Cyber Security

We offer a variety of services to help companies be prepared for real cyber-attacks.

Contact Us