Lacework Labs, Author at Lacework

Search Results

Results For:
Blog

Recent trends in S3 targeting

A recent report by Thales revealed that almost half of all businesses have experienced a cloud-based data breach… Read More

Read More
Blog

Identifying detection opportunities in cryptojacking attacks

Cryptojacking/cryptomining (T1496) is a well-known threat to the security industry. While frequently dismissed as an annoyance rather than an actual security incident, cryptomining is… Read More

Read More
Blog

Kubernetes tools are helpful for your team and sadly, your attacker

Overview Defenders must constantly stay aware of the latest attacker trends to ensure their organizations’ assets are protected. In recent years, leveraging commonly found… Read More

Read More
Blog

Security Advisory: CVE-2022-26134 RCE in multiple Atlassian products

Summary On Jun 2nd  Lacework Labs was made aware of CVE-2022-26134, a critical unauthenticated remote code execution vulnerability within… Read More

Read More
Blog

Security Advisory: Critical vulnerabilities in VMware

CVE(s) (if available): CVE-2022-22954, CVE-2022-22955,CVE-2022-22956, CVE-2022-22957, CVE-2022-22958, CVE-2022-22959, CVE-2022-22960, CVE-2022-22961, CVE-2022-22972, CVE-2022-22973 Summary In early April VMware released patches for remote code… Read More

Read More
Blog

Malware targeting latest F5 vulnerability

On May 9th, 2022 a remote code execution vulnerability in F5’s Big IP suite of appliances under CVE-2022-1388. Per… Read More

Read More
Blog

NginxDay

Lacework Labs Advisory – “Nginx Day” “Nginx Day”, a zero day targeting Nginx was announced by “AgainstTheWest” via their Twitter account. On April 11th,… Read More

Read More
Blog

New Lacework report reveals increase in sophisticated cloud attacks

  Security in the cloud continues to prove a challenge for organizations around the world. Threat actors are refining their techniques to gain… Read More

Read More
Blog

A guide to responding to the Log4j vulnerability

On December 10th, 2021, CVE-2021-44228 took the security industry by storm when a remote code execution vulnerability was discovered in the… Read More

Read More
Blog

Log4j Today – Prepare for What’s Next

Greg Foss, Lacework Labs The holiday season is never complete without a significant security event unfolding as the year comes to an end. Read More

Read More