Actors linked with the Iranian government were able to exploit an unpatched Log4Shell vulnerability—which the Cybersecurity and Infrastructure Security Agency asked agencies to address by the end of 2021—in an unnamed agency’s network.
Article Link: https://www.nextgov.com/cybersecurity/2022/11/iranian-hackers-compromised-federal-agencys-network-cisa-and-fbi-say/379832/