As time progresses, supply chain attacks are growing to become a popular attack vector among threat actors across the world. Fortunately, it seems that this vulnerability was not exploited in the wild in the seven months that it remained unpatched, but this will likely change. The problem with supply chain attacks is that in many instances, there are limited ways to detect them until they are more broadly known. It is recommended to have a defense in depth strategy with numerous detections deployed to cover a large portion of the cyber kill chain – this ensures that if the remote code execution itself is not caught, one of the actor’s other tactics likely will be. Additionally, the growing use of supply chain attacks demonstrates the need for either an internal or third-party threat intelligence team to ensure that organizations stay up-to-date with the latest vulnerabilities and patches that get released.
https://www.bleepingcomputer.com/news/security/apache-commons-text-rce-flaw-keep-calm-and-patch-away/
