In mid-2020, a white hat discovered the credentials used by a back-end system of a new energy car company on GitHub. The credentials simply used Base64 encryption. Although this credential cannot directly log in to the corresponding back-end system, the white hat can obtain...

On November 24, 2021, the Alibaba Cloud security team reported the Apache Log4j2 remote code execution vulnerability to Apache officials. 01 Vulnerability Description Apache Log4j2 is an excellent Java logging framework. …