by In the information security news this week, the Apache Software Foundation (ASF) called on users to update as soon as possible to patch the CVE-2022-42889 vulnerability, because some researchers pointed out that such a vulnerability may trigger a similar Log4Shell effect. In terms of threat trends, ransomware damage is the biggest focus. There are many news in the news this week. For example, Ukraine, Poland logistics industry, Australian insurance industry, Indian pharmaceutical companies, and two Japanese technology companies are new victims, Even the paper and electronic operations of many media under the German newspaper group have been suspended; in addition, in terms of the ransomware attack situation, some researchers have revealed that the recent ransomware Venus locks the remote desktop connection service, and the ransomware Magniber uses the entrainment Malicious JavaScript command file method and roundabout means to launch attacks.
