CSIRT Toscana

CSIRT Toscana

Tag: JBoss
Pagina 1 di 1

14 Luglio 2025

Distribuzione di payload malevoli tramite vulnerabilità note (BL01/250714/CSIRT-ITA)

Questo CSIRT ha recentemente osservato attività malevole volte a sfruttare vulnerabilità note presenti in istanze datate e non adeguatamente aggiornate dei middleware JBoss e WildFly, con l’obiettivo di distribuire payload malevoli, quali Cobalt Strike e Mimikatz.

Categorie

Bollettino

Argomenti

Best Practices EoL Exploitation JBoss WildFly

Altri argomenti

0-click

0-day

0-day

7-Zip

7-Zip

AC7

Access Rights Manager

Acer

ACN

Acrobat

Acrobat Reader

Acronis

Acronis Cyber Infrastructure

Active Directory

Adaptive Security Appliance

Adaptive Security Virtual Appliance

Adattivo

ADAudit Plus

ADC

AdminServer

Adobe

Adobe Photoshop

ADSelfService Plus

Advance Steel

AEM Forms

After Effects

Agent Tesla

Agenzia delle Entrate - Riscossione

Agile PLM Framework

AI Core

Aiohttp

Airflow

AirPlay

Amministrazione

Analog Telephone Adapter

Analytics

Analytics Plus

Android

Animate

Antivirus

AnyConnect VPN Server

AP

AP6 Series

Apache

Apache Cassandra

Apereo

Apex Central

Apex Central

Apex One

Apex One

ApexOne

APM Server

Apple

Aquabot

ArcaneDoor

Arcserve

Argo CD

Aria Automation

Aria Automation

Aria Operations

Aria Operations

AriaOperations

Arma dei Carabinieri

Aruba

ASA

Assets Discovery

Asus

AsyncOS

Atlassian

Atlassian Confluence

Audition

Authentication Gateway

AutoCAD

Autodesk

Automate

Avalanche

AVEVA

Avi Load Balancer

Avro

AX10

AX1500

Axios

Azure

backdoor

Backup & Replication

Backup & Replication

Backup Enterprise Manager

Bamboo

Bamboo Data Center

Beats

BeeDrive

BeePhotos

BeeStation

Best Practices

BeyondTrust

BI Publisher

BIG-IP

BIG-IP

BIND

Bitdefender

BNL

BNPP

Botnet

Bridge

Broadcom

BruteForce

BusinessObjects

C2

Cacti

Caldera

Callback

Camaleon CMS

Camera

Campagna

Canon

Catalyst Center

Catalyst SD-WAN

CAX30

CentreStack

Chaos Mesh

Chaotic Deputy

CheckPoint

Chrome

Cisco

Cisco Security Manager

Citrix

Citrix ADC

Citrix Gateway

Citrix Session Recording

Citrix Session Recording

Citrix uberAgent

CitrixBleed2

Civil 3D

ClamAV

Cleo

Cloud Agent

Cloud Backup Service

Cloud Data Flow

Cloud Foundation

Cloud Foundation

Cloud Foundation Operations

Cloud Gateway

Cloud One Trend Micro

Cloud Platform

Cloud Service Appliance

Cloud Services Application

Cloud Services Application

Cloud Skipper

Cloude Platform

CloudEdge

CloudGatewayServer

ColdFusion

Collaboration Daffodil

Collaboration Daffodil

Collaboration Joule

Collaboration Joule

Collaboration Kepler

Collaboration Kepler

Commerce

Community Editio

Community Edition

Community Edition

Commvault

Commvault Command Center

Compass

Concurrent Processing

ConfD

Configurator

Confluence

Confluence Data Center

Confluence Server

Connect

Connect Secure

ConnectWise

ConneXium Network Manager

Console On-Premise

Control Center

corrispondenza

Cortex XSOAR

CPython

CraftCMS

Critical Patch Update

Crosswork Network Services Orchestrator

CrowdStrike

CrushFTP

CSA

CSIRT

CUPS

cURL

CWMP

Cyber Protect

Cyber Protect Cloud

Cyber Protect Cloud Agent

CyberPanel

D-Link

Dahua

DameWare

DarkTortilla

Data Center

Db2

Decathlon

Deep Security Agent

Deep Security Agent

Desktop and Server Management

Desktop Central

DHCP

Diagnostic Tool

Digiever

Dimension

Directus

Django

Docker

Docker Desktop

Docs@Work for Android

DolphinScheduler

DrayTek

Dreamweaver

Drive Client

Drive Server

dropper

Drupal

Drupal Core

DSL CPE

DSM

DSMUC

DWG TrueView

DXP

E-Business Suite

EBS

ECE

EcoStruxure

Elastic Cloud Enterprise

Elastic NV

Elastic NV

EMM

Endpoint Manager

Endpoint Manager

Endpoint Manager for Mobile

Endpoint Privilege Management

Endpoint Security

EndpointManager

Enterprise

Enterprise Edition

Enterprise Edition

Enterprise Protection

EoL

EPM

EPMM

EPSS

Erlang Solutions

Erlang/OTP

Eset

ESXi

Exchange Reporter Plus

Exim

Expedition

Experience Manager Forms

Exploitation

Exploited

Expressway

Exynos

F5 Networks

F5OS

Facebook

FalconSensor

Fattura

Figma

FileCatalyst

FileCatalyst Workflow

FileSender

Finesse

Firebox

Firefox

Firefox ESR

Firefox ESR

Firefox for iOS

Firepower Management

Firepower Threat Defense

Fireware OS

Fleet Server

FlowiseAI

Flowmon

Fluent Bit

Focus

Formbook

Formbricks

FortiADC

FortiAIOps

FortiAnalyzer

FortiCamera

FortiClientEMS

FortiClientLinux

FortiClientMac

FortiClientWindows

FortiDLP

FortiEDR

FortiExtender

Fortigate

FortiIsolator

Fortimail

FortiManager

FortiManager Cloud

FortiNDR

Fortinet

FortiOS

FortiPAM

FortiPortal

FortiProxy

FortiRecorder

FortiSandbox

FortiSIEM

FortiSOAR

FortiSRA

FortiSwitch

FortiSwitchManager

FortiVoice

FortiWeb

FortiWebManager

FortiWLM

Fortra

Foundation

Framemaker

Framework

Freedom

FreeFlow Core

FreePBX

FreeType

FTD

FTP

Fusion

Gateway

Gen7

Generali

GeoServer

Ghostscript

Git

GitHub

GitHub Enterprise Server

GitLab

GitlLab

Gladinet

glibc

GlobalProtect App

GMS

GNU

GoAnywhere MFT

GoAnywhere MFT

Google

Google Chrome

Grafana

GravityZone

GravityZone Control Center

Greenshot

GuLoader

Harmony

HBS 3 Hybrid Backup Sync

HCX

HikCentral

Hikvision

HTTP Server

HTTP Server

HTTP/2

HTTP/2

HugeGraph

Hype

Hypervisor

IBM

iCloud

ICS

IdendityIQ

Illustrator

Image Builder

Image-Builder

IMC

Imperva

InCopy

InDesign

info-stealer

Infostealer

Infrastructure Parts Editor

InfraWorks

Ingress

Ingress Controller

IngressNightmare

INPS

Instagram

Integrated Management Controller

Intelligent Node

Intercept X

Intercom Broadcasting System

InterMesh Subscriber

Internet Security

Intesa Sanpaolo

IoC

iOS

IOS XE

IOS XE

IOS XR

IOS XR

IoT

iPadOS

IPS

ISAC

ISC

Ivanti

Ivanti Application Control

Ivanti Connect Secure

Ivanti Connect Secure

Ivanti EPM

Ivanti EPM

Ivanti Neurons

Ivanti Policy Secure

Ivanti Policy Secure

Ivanti Security Controls

Ivanti Sentry

IWC

Java

JBoss

JDBC

Jenkins

Jenkins Core

Jenkins LTS

Jenkins Security Advisory

Jenkins weekly

JetBrains

Jira

Jira Core Data Center

Joomla!

Juniper Networks

Juniper Networks

Junos OS

Junos OS Evolved

Junos Space

JunosOS

JunosOS Evolved

KEA

kernel

Kibana

KQL query

KSMBD

Kubernetes

La settimana cibernetica

Laravel

LDAP

Lectora

LegionLoader

Lens

LexiCom

LG

LG WebOS TV

libexpat

liblzma

Libraesva

LibreOffice

License Central

Liferay

Lightroom

Linux

Log Server

Log4cxx

LummaC2

Lynx

macOS

Magento

MagicINFO

malspam

Malvertising

malware

Manage

ManageEngine

Mastodon

Mattermost

Mautic

MCP

MDM

Media Encoder

Media Server for DSM

Media Streaming

MediaTek

Meeting

Meeting SDK

Meeting SDK

MegaRAC SPx

Meraki

Meraki MX

Meraki Z

Messages

MiCollab

Microsoft

Microsoft Edge

Microsoft Outlook

MikroTik

Ministero della Difesa

Mirth Connect

MISP

Mitel

MITM

MITRE

MiVoice

MobileIron Core

Moby

Modicon

MondoDB

MongoDB

MongoDB C Driver

MongoDB libbson

MongoDB PHP Driver

MongoDB Server

MongoDB Server

MongoDBServer

mongosh

Moodle

MOVEit

MOVEit Transfer

Mozilla

MTA

myQNAPcloud

MySonicWall

N-able

N-central

Nagios

NAKIVO

NAS

Navisworks

NDFC

Needrestart

Nessus

NetExtender

Netgear

NetScaler

NetScaler ADC

NetScaler Gateway

Netty

NetWeaver

Networks Expedition

Neurons

Neurons Agent Platform

Neurons for ITSM

Neurons for Patch Management

Neurons for Secure Access

Next.js

Nextcloud Server

NextGen HealthCare

Nexus

Nexus Dashboard

Nexus switch

nf_tables

NGINX

NMS300

node-SAML

Node.js

Node.js

NodeStealer

Notepad++

Notes Station

Now Platform

Now Platform

NPM

NSX

NVDebug

NVIDIA

NVR

NX-OS

OAuth

OFBiz

Omnissa

One

open source

OpenCTI

OpenEdge

OpenID Connect

OpenMetadata

OpenPrinting

OpenShift

OpenShift AI

OpenSSH

OpenSSL

OpenVPN

Operation 99

Operation ForumTroll

Oracle

Outlook

OwnCloud

Palo Alto Networks

Palo Alto Networks

Pan-OS

PAN-OS

PaperCut

Paragon

Paragon Active Assurance

Parallels Desktop

Parallels Desktop

Parquet

Partner Center

Patch for Configuration Manager

Patch-Tuesday

Patch-Tuesday

Path-Tuesday

pgAdmin

PgBouncer

phishing

Phishing Microsoft

Photos

Photoshop

PHP

PikaBot

Pixel

Pixels

Platform

Plex Media Server

plugin

PoC

Policy Secure

Policy Secure Gateways

Poste Italiane

PostgreSQL

Potentially Exploitable

Power Pages

PowerLogic

Premier Pro

Premiere Pro

Privileged Remote Access

Privileged Remote Access

Progress

Progress Software

Progress Software

Project RedPenguin

Proofpoint

Pulse Connect Secure

PuTTy

Python

Qlik

Qlik Sense Enterprise

QNAP

Qsync Central

QTS

QTS QuTS hero

Qualcomm

Quishing

QuLog Center

QuMagie

QuRouter

QuTS hero

QuTScloud

R

R7000

Ransomware

RARLAB

RAT

RAX30

RCE

Reader

Realtek

Recovery Orchestrator

Red Hat

RedHat

Redis

Regione Toscana

regreSSHion

Remote Support

Remote Support

Replication Service

Revit

Rexml

Rhadamantys

RISK:STATION

Rooms

Rooms Client

Rooms Client

Rooms Controller

RoundCube

Router

Rsync

Ruby

RubyGems

Runtime UI

Rust

Safari

SailPoint

Salesforce

SambaSpy

saml

Samsung

SAP

SAPSetup

Scam

Schneider Electric

Schneider Electric

ScreenConnect

SD-WAN

Secure Access

Secure Access Client

Secure client

Secure Email Gateway

Secure Endpoint

Secure Firewall Management Center

Secure Firewall Threat Defense Virtual

Secure Gateway

SecureSphere

Security Director

Security Gateways

Security Patch Day

Security router

SEM

Sentry

Serv-U

Server

Service Provider Console

Service Tags

ServiceNow

Shai-Halud

SharePoint

Siemens

SimpleHelp

Simulate

SINEC INS

SiPass Integrated

Sitecore

Sitefinity

Siveillance Video

SMA 100

SMA100

SMA1000

Smart Software Manager On-Prem

SMB

Smishing

Snort Rule

SolarWinds

Sondaggio

SonicOS

SonicWall

Sophos

Sourcetree

Splunk

Spoofing

Spring

Spring Framework

Spring Security

Squid

SSL VPN

SSL-VPN

Stampanti multifunzione

Stork

Struts

Substance 3D Designer

Substance 3D Modeler

Substance 3D Painter

Substance 3D Painter

Substance 3D Sampler

Substance 3D Stager

Substance 3D Stager

Substance 3D Viewer

Substance3DModeler

Substance3DPainter

Substance3DStager

Substance3DViewer

Sudo

Superset

supply chain attack

Surveillance Station

Symantec

SymDiag

Synology

Tableau

Teamcity

Tecnomatix Plant Simulation

Telco Cloud Infrastructure

Telco Cloud Platform

Telegram

Telerik Report Server

Telerik Reporting

Tenable

Tenable Patch Management

Tenda

Thales

Thuderbird ESR

Thunderbird

Thunderbird ESR

Thunderbird ESR

ThunderKitty

TIM

Tinyproxy

TMEE PolicyServer

Tomcat

Tools

Total Security

ToxicPanda

TP-Link

Traffic Server

Transfer

Trellix

Trend Micro

Trend Micro

Trenitalia

TrioFox

Triton Inference Server

trojan

tvOS

Typo3

UDisks

UDP

UEFI

UI Macros

UIWS

Unified Communications Manager

Unified Communications Manager SME

Unified Intelligence Center

Unity Connection

Unix

Update Server

uri gem

vCenter Server

vCenter Server

Veeam

Velocity License Server

VenomStealer

Vercel

Versalink

Video SDK

Video Station

Vigor

Vijeo Designer

Virtual Apps and Desktops

Virtual Apps and Desktops

Virtual Delivery Agent

Virtual Traffic Manager

Vishing

visionOS

Visual Composer Framework

VLTrader

VMWare

VMware Aria Automation

VMware Cloud Foundation

VMware SD-WAN Orchestrator

VMware Tools

VPN

VSPC

vSphere

Vulnerabilità

WAF

Warlock

WatchGuard

watchOS

Wazuh

Web Dispatcher

Web Help Desk

Web Help Desk

Webex

WebHelpDesk

WebKit

Webmail

WFBS

WFBSS

Whatsapp

WhatsUp Gold

WhatsUp Gold

WiFi

WildFly

Windows

Wing FTP Server

WinRAR

WithSecure

WLCAireOS

WordPress

Workplace

Workspace

Workspace ONE UEM

Workstation

Workstation Cloud

Workstation Pro

Xcode

XenServer

Xerox

XR1000

XR1000v2

XWiki

XWorm

XZ Utils

Yara Rule

yiiframework

YouTrack

Zabbix

zero-day

Zimbra

Zoho

Zoom

ZTA Gateway

ZTA Gateways

ZTA Gateways

Zyxel