Security News > 2021 > December > Log4j RCE latest: In case you hadn't noticed, this is Really Very Bad, exploited in the wild, needs urgent patching

Log4j RCE latest: In case you hadn't noticed, this is Really Very Bad, exploited in the wild, needs urgent patching
2021-12-13 23:07

Miscreants are wasting no time in using the widespread Log4j vulnerability to compromise systems, with waves and waves of live exploit attempts focused mainly - for now - on turning infected devices into cryptocurrency-mining botnet drones.

Apache Log4j is a logging utility written in Java that is used all over the world in many software packages and online systems.

Bear in mind that it's quite possible those exploiting services out in the wild are also patching Log4j after the initial compromise to keep other miscreants out.

A big list of vendors shipping patches because their products include Log4j 2.x. Don't forget: application and server software that include the logging tool need to be distributed to users and installed.

Cloudflare CEO Matthew Prince said his biz discovered Log4j exploit attempts happening as early as December 1, and Cisco said it saw attempts the next day.

Microsoft published its own Log4j exploitation prevention advice, saying it has mostly seen "Mass scanning by attackers attempting to thumbprint vulnerable systems, as well as scanning by security companies and researchers."


News URL

https://go.theregister.com/feed/www.theregister.com/2021/12/13/log4j_rce_latest/