Threat Post2 年
Log4j Exploit: Lessons Learned and Risk Reduction Best Practices
Also covered will be Log4j lessons learned and the importance of fixing bad code before attacker can exploit it. Threatpost’s Becky Bracken, journalist and host, will moderate the session and ...
CRN3 年
Log4j Vulnerability: How Two MSPs Reacted To The Massive Exploit
The flaw in the Java logging library Apache Log4j sat undiscovered for years and ... The open-source library used by everyone from Apache and Apple to Minecraft and Twitter gave cybercriminals ...
CRN3 年
Log4j Exploit Is ‘A Fukushima Moment’ For Cybersecurity: Tenable CTO
‘We’re discovering new apps every minute which use Log4j in one way or another ... The first proof-of-concept exploit was published on GitHub Thursday, prompting adversaries to scan the ...
Computing3 年
Khonsari ransomware exploiting Log4j bug to target Minecraft servers, Microsoft confirms
These malicious messages later exploit the Log4Shell bug to retrieve ... Minecraft servers running a vulnerable version of Log4j 2 via the use of a third-party Minecraft mods loader," Microsoft ...
Computing3 年
'Especially dangerous' Java zero day discovered, same type as used in Equifax breach
A proof of concept exploit has been published on GitHub that attacks a remote code execution zero day flaw in Apache Log4j, a very widely used logging program for Java software. The flaw ...