Security News > 2022 > January > Dutch cybersecurity agency warns of lingering Log4j risks
In a warning issued on Thursday, the Dutch National Cybersecurity Centre says organizations should still be aware of risks connected to Log4j attacks and remain vigilant for ongoing threats.
"It is expected that malicious parties will continue to search for vulnerable systems and carry out targeted attacks in the coming period," the Dutch cybersecurity agency said.
Log4j vulnerabilities are a very appealing attack vector for both financially motivated and state-backed attackers, given that the open-source Apache Log4j logging library is used in a wide range of systems from dozens of vendors.
NCSC's warning is well-timed, seeing that multiple alerts of ongoing Log4j exploitation around the world were issued by government and private organizations worldwide.
A report published by Microsoft on Wednesday mentions attempts made by unknown threat actors to propagate Log4j attacks to an organization's internal LDAP servers by exploiting a SolarWinds Serv-U zero-day.
The attacks failed because the Windows domain controllers targeted in the incident were not vulnerable to Log4j exploits.