<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Helvetica;
panose-1:2 11 6 4 2 2 2 2 2 4;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Georgia;
panose-1:2 4 5 2 5 4 5 2 3 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
h2
{mso-style-priority:9;
mso-style-link:"Heading 2 Char";
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:18.0pt;
font-family:"Times New Roman",serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.Heading2Char
{mso-style-name:"Heading 2 Char";
mso-style-priority:9;
mso-style-link:"Heading 2";
font-family:"Times New Roman",serif;
font-weight:bold;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal">Is Keycloak 1.8 susceptible to this vulnerability?<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;background:white">
<span style="font-size:18.0pt;font-family:"Helvetica",sans-serif;color:#222222">Cisco Talos has identified millions of vulnerable JBoss servers that can potentially be infected with SamSam ransomware<o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;background:white">
<span style="font-family:"Helvetica",sans-serif;color:#4E4242;background:white">Attackers used a JBoss-specific exploit called JexBoss -- a Jboss verification and exploitation tool -- to compromise vulnerable servers and then install webshells and backdoors
for remote access. Cisco Talos researchers found that compromised JBoss servers typically have more than one webshell installed, suggesting that the systems have been repeatedly compromised by different actors. The list of webshells include mela, shellinvoker, jbossinvoker, zecmd, cmd, genesis, sh3ll, and
jbot.</span><span style="font-size:18.0pt;font-family:"Helvetica",sans-serif;color:#222222"><o:p></o:p></span></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;background:white">
<span style="font-size:18.0pt;font-family:"Helvetica",sans-serif;color:#222222"><o:p> </o:p></span></p>
<p class="MsoNormal"><a href="http://www.infoworld.com/article/3058254/security/patch-jboss-now-to-prevent-samsam-ransomware-attacks.html">http://www.infoworld.com/article/3058254/security/patch-jboss-now-to-prevent-samsam-ransomware-attacks.html</a><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#999999">__________________________<o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#A00B10">BEN BAZIAN<o:p></o:p></span></b></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">Director, Information Systems<o:p></o:p></span></b></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">MBO Partners<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><img border="0" width="181" height="64" id="Picture_x0020_1" src="cid:image001.png@01D19A16.3287E5A0" alt="cid:image001.png@01D057F2.BE72C880"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">t</span></b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">: 703.793.6010<o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">f</span></b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">: 703.793.6079<o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">e</span></b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">: bbazian@mbopartners.com<o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">w</span></b><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">: mbopartners.com<o:p></o:p></span></p>
<p class="MsoNormal"><b><span style="font-family:"Georgia",serif;color:#353433">s:</span></b><span style="font-family:"Georgia",serif;color:#1F497D"> <a href="http://www.twitter.com/mbopartners"><span style="color:purple">Twitter</span></a> </span><span style="font-family:"Georgia",serif;color:black">|</span><span style="font-family:"Georgia",serif;color:#1F497D"> <a href="https://www.linkedin.com/company/mbo-partners"><span style="color:purple">Linkedin</span></a> </span><span style="font-family:"Georgia",serif;color:black">|</span><span style="font-family:"Georgia",serif;color:#1F497D"> <a href="https://www.facebook.com/mbopartners"><span style="color:purple">Facebook</span></a> </span><span style="font-size:10.5pt;color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:7.0pt;font-family:"Georgia",serif;color:#353433">Notice: This email and any files transmitted with it are confidential. They are intended solely for the use of the individual addressed. If you have received this
email in error please notify <a href="mailto:postmaster@mbopartners.com"><span style="color:#353433">postmaster@mbopartners.com</span></a> and permanently delete the e-mail and files.<o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</body>
</html>