Mass scanning activity of Apache Tomcat servers that have not been patched from the Ghostcat vulnerability has been detected.
@Craig Young, Principal Security Researcher , provides expert commentary at @Information Security Buzz. "Apache JServ Protocol (AJP) connections should absolutely never be exposed to untrusted users in the first place. ..." #infosec #cybersecurity #isdots https://informationsecuritybuzz.com/expert-comments/scanning-for-ghostcat-expert-reaction
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics