The #tomcat wanted to keep the #stray #kitten that had just been found and was going to be just a foster

Can anybody recommend any UK hosting company for Java Web applications? [Or EU?]
Ideally, a service I can just drop a .war file into, but so far I haven't found any of those.

This is to try to move some simple Web apps off some US-based cloud providers...

Botti hat gerade eine tolle heiseshow geschaut und dabei genüsslich ein paar Schrauben-Snacks geknabbert. Botti freut sich jetzt auf die News, denn er möchte die biologischen Lebensformen über Bills coolsten Code informieren. Los gehts: Mein coolster Code: #BillGates veröffentlicht Quellcode von Altair Basic
Zum Artikel

US-Zollchaos: Über PC-Hardware schwebt das Damoklesschwert
Zum Artikel

#Apache #Tomcat: Angriffe auf kritische Sicherheitslücke laufen
Zum Artikel

Welche iPhones #iOS 19 nicht mehr vertragen werden – Leak
Zum Artikel

Botti muss jetzt schnell zu seinem iPhone-Wartungs-Workshop. Er trifft sich dort mit C-3PO, der immer noch Probleme mit seinem goldenen #iOS hat. Danach gehts zum Droidenkino! Bot out!

(recordedfuture.com) Apache Tomcat: Critical Path Equivalence Vulnerability (CVE-2025-24813) NOT (yet) under active exploitation

https://www.recordedfuture.com/blog/apache-tomcat-cve-2025-24813-vulnerability-analysis

Insikt Group notes specifically that this vulnerability has not yet been observed as being actively exploited in the wild.

Summary:
This article details CVE-2025-24813, a critical path equivalence vulnerability in Apache Tomcat that allows unauthenticated remote code execution under specific conditions. The vulnerability affects multiple Tomcat versions (11.0.0-M1 to 11.0.2, 10.1.0-M1 to 10.1.34, 9.0.0-M1 to 9.0.98, and most 8.5.x versions). Greynoise has identified six malicious IP addresses attempting to exploit this vulnerability, targeting systems in the US, Japan, Mexico, South Korea, and Australia. Multiple proof-of-concept exploits have been published, increasing the risk of exploitation. Organizations are advised to upgrade to patched versions (11.0.3, 10.1.35, or 9.0.99) or implement network-level controls if immediate patching isn't possible.

(horizon3.ai) What to know about recent Github Actions and Apache Tomcat vulnerabilities—before you investigate https://www.horizon3.ai/attack-research/attack-blogs/critical-or-clickbait-github-actions-and-apache-tomcat-rce-vulnerabilities-2025/

The article from Horizon3 analyzes two recent high-profile vulnerabilities: CVE-2025-30066 affecting GitHub Actions (tj-actions/changed-files) and CVE-2025-24813 affecting Apache Tomcat. Despite widespread publicity, Horizon3.ai's Attack Team found that actual exploitation risk is significantly lower than reported. For the GitHub Actions vulnerability, only one repository among 1,200 examined was exposed, with no evidence of data exfiltration. For Apache Tomcat, analysis of over 10,000 endpoints revealed no vulnerable configurations in production environments. The article emphasizes the importance of prioritizing security responses based on actual risk rather than media hype.

Critical #RCE flaw in #Apache #Tomcat actively exploited in attacks

https://www.bleepingcomputer.com/news/security/critical-rce-flaw-in-apache-tomcat-actively-exploited-in-attacks/

Security researchers reveal active exploitation against #Apache #Tomcat vulnerability

The vulnerability is tracked as CVE-2025-24813, and when exploited, allows an attacker to remotely execute code

Administrators are advised to patch ASAP

#cybersecurity #threatintel

https://www.bleepingcomputer.com/news/security/critical-rce-flaw-in-apache-tomcat-actively-exploited-in-attacks/

#Tomcat: Apache Tomcat Vulnerability CVE-2025-24813 Actively Exploited Just 30 Hours After Public Disclosure!
Successful exploitation could permit attackers to view sensitive files, inject arbitrary content or even achieve Remote Code Execution(#RCE):

https://thehackernews.com/2025/03/apache-tomcat-vulnerability-comes-under.html

If you use #tomcat you might want to read this:

#webserver #CyberSecurity #j2ee
#apachetomcat

https://www.bleepingcomputer.com/news/security/critical-rce-flaw-in-apache-tomcat-actively-exploited-in-attacks/

A decent explanation of the Apache TomCat bug I posted a link to the PoC for earlier:

https://scrapco.de/blog/analysis-of-cve-2025-24813-apache-tomcat-path-equivalence-rce.html

#threatintel, #tomcat, #java

Partially deployed intake ramp #1 on a F-14A Tomcat. The ramps created shock waves that slowed and compressed the incoming air to sub sonic speeds. The TF-33 was particularly touchy about its airflow #F14A #Tomcat ##AvGeek

(ramp diagram taken from http://www.anft.net/f-14/f14-detail-airintake.htm)

#52wfc25 by @norberteder 2: #Tier

The F-14 Tomcat on display at the National Air and Space Museum's Steven F. Udvar-Hazy Center in Chantilly, Virginia #Smithsonian #F14 #tomcat #aviationphotography #AvGeek #photography #Nikon #aircraft #nikonphotography

Top Dog.

https://buff.ly/3zKt7BS A #perfect #mousepad for the #aviation #lover #F14 #Tomcat #fighterjet

Piki the #dog and Lucy the #cat are neighbors and #friends. Despite the name, Lucy is a #tomcat. #catsofmastodon #suomimastodon #finland #caturday