Security News > 2021 > December > What the Log4Shell Bug Means for SMBs: Experts Weigh In
From there, an attacker can carry out any number of further attacks.
What Bad Log4Shell Outcomes Are Possible for SMBs? Ofer Maor, Mitiga CTO: One of the concerns is that a lot of these attacks now will focus on getting initial access only and establishing persistence.
Most of the attacks seem to be using compute resources to mine cryptocurrency, but these attacks are changing and evolving each hour.
SMBs should be hyper-aware of any of their software vendors/MSPs that use Apache log4j in case they are affected by a breach; I suspect we might hear of some ransomware attacks soon stemming from this vulnerability.
Lacework's Nunnikhoven: "A real world-attack can be as simple as the attack sending a specifically crafted web request to a vulnerable server. When the server processes that request, the attacker then has access to the server. The Lacework Labs team has documented this attack and some other technical aspects of attacks we've seen in this blog post."
Especially for small to medium-sized businesses - 78 percent of MSPs reported attacks against their client SMBs in the last two years alone.