IBM QRadar - When The Attacker Controls Your Security Stack (CVE-2022-26377) - watchTowr Labs

Welcome to April 2024. A depressing year so far - we've seen critical vulnerabilities across a wide range of enterprise software stacks. In addition, we've seen surreptitious and patient threat actors light our industry on fire with slowly introduced backdoors in the XZ library. Today, in this it...