#activemq — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #activemq, aggregated by home.social.
-
Майский «В тренде VM»: громкие уязвимости в Linux, ActiveMQ, SharePoint и Acrobat Reader
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно смотрим на поток информации об уязвимостях из самых разных источников: бюллетени безопасности вендоров, соцсети, блоги, телеграм-каналы, репозитории кода, базы уязвимостей и эксплойтов. Из этого многообразия мы стараемся выделять самое важное - трендовые уязвимости, которые уже используются в реальных атаках или с высокой вероятностью будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили в общий список еще четыре трендовые уязвимости.
https://habr.com/ru/companies/pt/articles/1038038/
#activemq #sharepoint #acrobat_reader #adobe_acrobat #уязвимости_и_их_эксплуатация
-
Майский «В тренде VM»: громкие уязвимости в Linux, ActiveMQ, SharePoint и Acrobat Reader
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно смотрим на поток информации об уязвимостях из самых разных источников: бюллетени безопасности вендоров, соцсети, блоги, телеграм-каналы, репозитории кода, базы уязвимостей и эксплойтов. Из этого многообразия мы стараемся выделять самое важное - трендовые уязвимости, которые уже используются в реальных атаках или с высокой вероятностью будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили в общий список еще четыре трендовые уязвимости.
https://habr.com/ru/companies/pt/articles/1038038/
#activemq #sharepoint #acrobat_reader #adobe_acrobat #уязвимости_и_их_эксплуатация
-
Майский «В тренде VM»: громкие уязвимости в Linux, ActiveMQ, SharePoint и Acrobat Reader
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно смотрим на поток информации об уязвимостях из самых разных источников: бюллетени безопасности вендоров, соцсети, блоги, телеграм-каналы, репозитории кода, базы уязвимостей и эксплойтов. Из этого многообразия мы стараемся выделять самое важное - трендовые уязвимости, которые уже используются в реальных атаках или с высокой вероятностью будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили в общий список еще четыре трендовые уязвимости.
https://habr.com/ru/companies/pt/articles/1038038/
#activemq #sharepoint #acrobat_reader #adobe_acrobat #уязвимости_и_их_эксплуатация
-
Майский «В тренде VM»: громкие уязвимости в Linux, ActiveMQ, SharePoint и Acrobat Reader
Хабр, привет! На связи Александр Леонов, ведущий эксперт PT Expert Security Center и дежурный по самым опасным уязвимостям месяца. Мы с командой аналитиков Positive Technologies регулярно смотрим на поток информации об уязвимостях из самых разных источников: бюллетени безопасности вендоров, соцсети, блоги, телеграм-каналы, репозитории кода, базы уязвимостей и эксплойтов. Из этого многообразия мы стараемся выделять самое важное - трендовые уязвимости, которые уже используются в реальных атаках или с высокой вероятностью будут эксплуатироваться в ближайшее время. С прошлого дайджеста мы добавили в общий список еще четыре трендовые уязвимости.
https://habr.com/ru/companies/pt/articles/1038038/
#activemq #sharepoint #acrobat_reader #adobe_acrobat #уязвимости_и_их_эксплуатация
-
Ataque crítico ao Apache ActiveMQ ameaça milhares de servidores com um detalhe inesperado na descoberta
🔗 https://tugatech.com.pt/t82128-ataque-critico-ao-apache-activemq-ameaca-milhares-de-servidores-com-um-detalhe-inesperado-na-descoberta -
Apache ActiveMQ esconde falha crítica há 13 anos e a solução surgiu de onde menos se esperava
🔗 https://tugatech.com.pt/t81772-apache-activemq-esconde-falha-critica-ha-13-anos-e-a-solucao-surgiu-de-onde-menos-se-esperava -
13-year-old bug in #ActiveMQ lets hackers remotely execute commands
-
New DripDropper Malware Exploits Linux Flaw Then Patches It Lock Rivals Out – Source:hackread.com https://ciso2ciso.com/new-dripdropper-malware-exploits-linux-flaw-then-patches-it-lock-rivals-out-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #Vulnerability #CyberAttack #DripDropper #RedCanary #ActiveMQ #Hackread #security #malware #Apache #Linux
-
New DripDropper Malware Exploits Linux Flaw Then Patches It Lock Rivals Out https://hackread.com/dripdropper-malware-exploits-linux-flaw-patche-lock-out/ #Cybersecurity #Vulnerability #CyberAttack #DripDropper #RedCanary #Security #ActiveMQ #Malware #Apache #Linux
-
New malware called #DripDropper attacks Linux servers by exploiting an ActiveMQ vulnerability, then patches that vulnerability to lock out rival cybercriminals.
Read: https://hackread.com/dripdropper-malware-exploits-linux-flaw-patche-lock-out/
-
Look what I've found while reading #haproxy docs : #YouPorn is implemented as a LAMP stack and serves 300.000 requests per second !
That's massive.https://www.haproxy.org/they-use-it.html
https://highscalability.com/youporn-targeting-200-million-views-a-day-and-beyond/#performance #scalability #development #Redis #nginx #php #ActiveMQ #varnish #MySQL #symfony2 #syslogng
-
had a really productive day mostly working for the overlord but actually got to do some public-facing #opensource stuff for once. the stuff I'm doing is not really all that likely to help anyone but our customers, not because our stuff is proprietary (it isn't) but because it's probably better SEOed elsewhere.
Actually I'm not sure that #activemq article is anywhere else. there is some stuff in the docs but it's definitely not presented like that. I didn't think of it initially because...
-
My current employer is using #activemq along with #oracle databases and #oracle #WebLogic_Server as a service-oriented architecture (SOA) to create data interchange amongst disparate systems. It is mostly performing extract-transform-load #etl operations. I wrote something in #python which is way more lightweight and does the same. However, it is more of a script and not necessarily a solution.
What would you recommend as a replacement for the SOA architecture? #ssis? #mulesoft? #camel?
-
"Evaluating persistent, replicated message queues" mega article by @adamwarski et. al. is pure gold. https://softwaremill.com/mqperf/ Features #Kafka #PostgreSQL #mongodb #Redis #Pulsar #NATS #SQS #RocketMQ #RabbitMQ #ActiveMQ #RedPanda and more
-
The #s390x open source software team at IBM confirms the latest versions of various software packages run well on #Linux on #IBMZ & #LinuxONE
In August of 2024 validation was maintained for over two dozen projects, including #Apache #ActiveMQ, #Grafana, and #Jenkins
In the broader community, we saw s390x support added for R-hub containers (ci, containers), praat (ci, binaries), & Elvish (ci) 🎉
Full report (and how your OSS community can get a VM too!): https://community.ibm.com/community/user/ibmz-and-linuxone/blogs/elizabeth-k-joseph1/2024/09/18/linuxone-open-source-report-august-2024
-
Wiele aplikacji posiada obecnie asynchroniczną komunikację, będącą potrzebą z uwagi na mnogość komunikatów. I od razu część osób pomyśli o RabbitMQ. A jeszcze inni o Kafce. A niektórzy o ActiveMQ. Który wybrać? Jak zawsze, to zależy.
https://dev.to/somadevtoo/difference-between-apache-kafka-rabbitmq-and-activemq-4f1k
-
Ok what the fuck.
I know Apache #ActiveMQ
I know Apache #Artemis
What the fuck is Apache #Apollo? And why does the word "Apollo" not occur ONCE on https://activemq.apache.org/apollo ? -
Does anyone have a thorough walk through of #ActiveMQ transactions they can share? Specifically, JMS transactions
-
Anyone use #ActiveMQ scheduling? Seems to be a little used feature. Cannot find much at all in the way of fixing problems with it. Also, if you use it, wondering what version you are on.
-
In other words, hackers could avoid writing their tools to disk. They could have simply written their ransomware to Nashorn (or loaded the JAR class into memory) and stayed in memory.
-
This Week in Security: CVSS 4, OAuth, and ActiveMQ https://hackaday.com/2023/11/03/this-week-in-security-cvss-4-oauth-and-activemq/ #HackadayColumns #SecurityHacks #ActiveMQ #oauth #News #CVSS
-
This Week in Security: CVSS 4, OAuth, and ActiveMQ - We’ve talked a few times here about the issues with the CVSS system. We’ve seen CV... - https://hackaday.com/2023/11/03/this-week-in-security-cvss-4-oauth-and-activemq/ #hackadaycolumns #securityhacks #activemq #oauth #news #cvss
-
❗️#CERTWarnung❗️
Die #Schwachstelle CVE-2023-46604 in Apache #ActiveMQ wird aktiv ausgenutzt. Entfernte Angreifende können ActiveMQ Server kompromittieren und Ransomware-Angriffe durchführen.
Mehr dazu hier: 👉 https://www.bsi.bund.de/dok/1099178 -
The identified vulnerability, known as CVE-2023-46604, is rated as critical with a CVSS v3 score of 10.0.
-
Rapid7 MDR has identified what appears to be exploitation of Apache #ActiveMQ #CVE202346604 in customer environments. The attacker behavior our team has observed includes attempts to deploy #ransomware on victim systems. https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/
-
New exploit out in the wild, this time it affects ActiveMQ:
Apache ActiveMQ is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker with network access to a broker to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.
It's recommended to upgrade to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3, to fix this issue.
-
We use #activemq at work and there's no way we can be using it right. Something as simple as message routing can't be this broken, right?
End points that care who they talk to. Dedicated projects to build a message router (why can't #AMQ do this?) configured via *two separate* config files only one person can edit. No way to tunnel messages through a legacy file-based transfer.
I really hope there's something better out there just to have hope for humanity. #python #javascript
-
"Evaluating persistent, replicated message queues" mega article by @adamwarski et. al. is pure gold. https://softwaremill.com/mqperf/ Features #Kafka #PostgreSQL #mongodb #Redis #Pulsar #NATS #SQS #RocketMQ #RabbitMQ #ActiveMQ #RedPanda and more
-
"Evaluating persistent, replicated message queues" mega article by @adamwarski et. al. is pure gold. https://softwaremill.com/mqperf/ Features #Kafka #PostgreSQL #mongodb #Redis #Pulsar #NATS #SQS #RocketMQ #RabbitMQ #ActiveMQ #RedPanda and more
-
"Evaluating persistent, replicated message queues" mega article by @adamwarski et. al. is pure gold. https://softwaremill.com/mqperf/ Features #Kafka #PostgreSQL #mongodb #Redis #Pulsar #NATS #SQS #RocketMQ #RabbitMQ #ActiveMQ #RedPanda and more
-
"Evaluating persistent, replicated message queues" mega article by @adamwarski et. al. is pure gold. https://softwaremill.com/mqperf/ Features #Kafka #PostgreSQL #mongodb #Redis #Pulsar #NATS #SQS #RocketMQ #RabbitMQ #ActiveMQ #RedPanda and more
-
Rapid7 MDR has identified what appears to be exploitation of Apache #ActiveMQ #CVE202346604 in customer environments. The attacker behavior our team has observed includes attempts to deploy #ransomware on victim systems. https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/
-
Rapid7 MDR has identified what appears to be exploitation of Apache #ActiveMQ #CVE202346604 in customer environments. The attacker behavior our team has observed includes attempts to deploy #ransomware on victim systems. https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/
-
Rapid7 MDR has identified what appears to be exploitation of Apache #ActiveMQ #CVE202346604 in customer environments. The attacker behavior our team has observed includes attempts to deploy #ransomware on victim systems. https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/
-
Rapid7 MDR has identified what appears to be exploitation of Apache #ActiveMQ #CVE202346604 in customer environments. The attacker behavior our team has observed includes attempts to deploy #ransomware on victim systems. https://www.rapid7.com/blog/post/2023/11/01/etr-suspected-exploitation-of-apache-activemq-cve-2023-46604/
-
Apache ActiveMQ Vulnerability (CVE-2023-46604) Continuously Being Exploited in Attacks
In November 2023, AhnLab Security Emergency response Center (ASEC) published a blog post titled “Circumstances of the Andariel Group Exploiting an Apache ActiveMQ Vulnerability (CVE-2023-46604)” which covered cases of the Andariel threat group exploiting the CVE-2023-46604 vulnerability to install malware. Since then, the Apache ActiveMQ vulnerability (CVE-2023-46604) has continued to be exploited by various threat actors.
Pulse ID: 6585720528f4e1dd0336c0d1
Pulse Link: https://otx.alienvault.com/pulse/6585720528f4e1dd0336c0d1
Pulse Author: AlienVault
Created: 2023-12-22 11:24:53Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#OTX #OpenThreatExchange #InfoSec #bot #CyberSecurity #Malware #Apache #Vulnerability #ActiveMQ #AhnLab #Andariel #AndarielGroup #AlienVault
-
My current employer is using #activemq along with #oracle databases and #oracle #WebLogic_Server as a service-oriented architecture (SOA) to create data interchange amongst disparate systems. It is mostly performing extract-transform-load #etl operations. I wrote something in #python which is way more lightweight and does the same. However, it is more of a script and not necessarily a solution.
What would you recommend as a replacement for the SOA architecture? #ssis? #mulesoft? #camel?
