Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks

Apache ActiveMQ, an open-source message broker written in Java, is currently under threat from malicious threat actors using the Godzilla web shell. A now-patched flaw in Apache software is being exploited on compromised hosts to deliver the Godzilla web shell in what CYbersecurity researchers are warning of a “notable increase” in such activities. According to Trustwave, these web shells are difficult to detect as they are disguised within an unknown binary format, designed specifically to evade security and signature-based scanners. Despite the binary’s unknown status, it is a burgeoning problem that the Apache community and users must be aware of.

Published: Mon, 22 Jan 2024 09:10:00 +0530