Security Affairs

DECEMBER 16, 2021

Experts warn that threat actors are actively attempting to exploit a second bug disclosed in the popular Log4j logging library. American web infrastructure and website security company Cloudflare warns that threat actors are actively attempting to exploit a second vulnerability, tracked as CVE-2021-45046 , disclosed in the Log4j library.

Ransomware 125

Ransomware Hacking Software Cybercrime 125

Security Boulevard

JUNE 6, 2022

We need to know what’s in the software that is supporting our business. The post Log4j Taught Us a Valuable Lesson appeared first on Security Boulevard.

Software 98

Software 98

Security Boulevard

MAY 9, 2023

The goal of these public repositories is to help teams collaborate on improving coding, fixing vulnerabilities, and support building high-quality software for companies. Two of the most popular types of these repositories are Log4j and GitHub.

Cyber threats 59

Cyber threats Software Risk 59

eSecurity Planet

JANUARY 13, 2022

Security researchers are continuing to see state-supported hacking groups developing tools to leverage the high-profile Log4j vulnerability that exploded onto the scene last month even as the White House and other parts of the federal government look for ways to get ahead of the threat. APT35 attack diagram: Check Point.

Government 133

Government Software InfoSec Cybersecurity 133

SecureList

JUNE 28, 2023

During the same period, Andariel also actively exploited the Log4j vulnerability as reported by Talos and Ahnlab. From initial infection to fat fingers Andariel infects machines by executing a Log4j exploit, which, in turn, downloads further malware from the C2 server.

Malware 136

Malware Cybercrime Phishing Ransomware 136

Security Boulevard

JANUARY 11, 2022

Over the last few weeks, log4j has been the focus in most organizations. In this blog, we will focus on how you can easily detect vulnerable versions of log4j in your Java applications using ShiftLeft CORE. Do reach out to us at support@shiftleft.io We have covered it in detail here , here , and here. if you have any questions!

Accountability 105

Accountability Media Authentication Software 105

Approachable Cyber Threats

DECEMBER 16, 2021

What is Log4j?” Log4j is an open source, Apache maintained Java-logging library that is used across the globe in popular applications and services. Log4j was developed to provide a Java logging framework to standardize the process of logging on the Java platform. Category News, Vulnerabilities Risk Level.

Risk 106

Risk Government Software Internet 106

Security Boulevard

DECEMBER 10, 2021

Unauthenticated RCE in critical Java logging utility Log4j. On 9 December 2021, Apache disclosed that the Log4j 2 utility contains a critical vulnerability that allows unauthenticated remote code execution (RCE), a serious issue that impacts a large number of applications. Apache Log4j versions <=2.14.1 From log4j 2.15.0,

Accountability 78

Accountability Software Cybersecurity Hacking 78

Google Security

DECEMBER 16, 2021

Our mission as the Google Open Source Security Team is to secure the open source libraries the world depends on, such as Log4j. We have started this work by partnering with the security company Code Intelligence to provide continuous fuzzing for Log4j , as part of OSS-Fuzz. Check out our documentation to get started using OSS-Fuzz.

Internet 126

Internet Internet Engineering Software 126

The Last Watchdog

SEPTEMBER 27, 2022

Related: The big lesson of Log4j. There is every reason to anticipate that emerging security tools and practices will help organizations achieve digital resiliency in terms of supporting work-from-home scenarios, protecting their supply chains and mitigating attack surface expansion.

Internet 234

Internet Internet 234

Dark Reading

DECEMBER 15, 2021

The early lessons from Log4j indicate that key security principles can help better handle these high-risk software supply chain security incidents if teams have proper support.

Software 70

Software Risk 70

eSecurity Planet

DECEMBER 13, 2021

Cybercriminals are quickly ramping up efforts to exploit the critical flaw found in the widely used Log4j open-source logging tool, targeting everything from cryptomining to data theft to botnets that target Linux systems. The Log4Shell flaw – which Impacts Log4j versions 2.0 How the Log4j exploit works. A Major Threat.

Cybersecurity 143

Cybersecurity Software Government Threat Detection 143

SecureWorld News

DECEMBER 15, 2021

Earlier this week, a vulnerability was discovered in Apache's Log4j that caused quite a stir among cybersecurity professionals. Think of Apache as being one of the legs, one of the giant supports of a bridge that facilitates the connective tissue between the worlds of applications and computer environments. When it rains, it pours.

Cybersecurity 73

Cybersecurity Software Internet Internet 73

Security Affairs

MARCH 17, 2022

Researchers uncovered a new Linux botnet, tracked as B1txor20, that exploits the Log4J vulnerability and DNS tunnel. The malware was first spotted on February 9, 2022, when 360Netlab’s honeypot system captured an unknown ELF file that was spreading by exploiting the Log4J vulnerability. Pierluigi Paganini.

DNS 122

DNS Malware Technology Encryption 122

SecureWorld News

JULY 14, 2022

The Department of Homeland Security's (DHS) Cyber Safety Review Board (CSRB) has released its first report , providing detailed information on the Log4j vulnerability. After the SolarWinds incident and Log4j, it became clear that something like the CSRB was needed. So, what did the CSRB have to say about Log4j?

Software 69

Software Government Risk Cybersecurity 69

SecureList

DECEMBER 20, 2021

On December 18th, Log4j version 2.17.0 History of the Log4j library vulnerabilities. CVE-2021-45046 (present in Log4j 2.15.0) – fixed in 2.16.0. CVE-2021-45105 (present in Log4j 2.16.0) – fixed in 2.17.0. CVE-2021-45046 (present in Log4j 2.15.0) – fixed in 2.16.0. Is IoT vulnerable to Log4j?

IoT 80

IoT Software Technology DNS 80

Fox IT

DECEMBER 13, 2021

tl;dr Run our new tool by adding -javaagent: log4j-jndi-be-gone-1.0.0-standalone.jar standalone.jar to all of your JVM Java stuff to stop log4j from loading classes remotely over LDAP. Even the log4j format “ Interpolator ” wraps a bunch of handlers, including the JNDI handler, in reflection wrappers. Context: log4shell.

Internet 40

Internet Internet DNS 40

eSecurity Planet

MAY 18, 2022

The Apache Log4j Log4Shell bug is one of the most critical vulnerabilities in the history of cybersecurity. Hundreds of millions of devices use the Log4j component for various online services, among them government organizations, critical infrastructure, companies and individuals.

Risk 120

Risk Big data Software Architecture 120

SecureWorld News

AUGUST 30, 2022

The Log4j vulnerability, along with some others this last year, highlighted how a single vulnerability can be destructive to an entire supply chain. It is because of instances like Log4j that Google has implemented its OSS VRP. RELATED: Tracking the Start of the Log4j Vulnerability ].

Software 100

Software Risk Passwords Cybersecurity 100

Google Security

APRIL 11, 2023

Where the deps.dev website allows human exploration and examination, and the BigQuery dataset supports large-scale bulk data analysis, this new API enables programmatic, real-time access to the corpus for integration into tools, workflows, and analyses. Where else? - How much of the ecosystem is impacted? advisoryKeys[].id'

Software 130

Software Risk Engineering Internet 130

Security Boulevard

OCTOBER 11, 2022

This forces many users to rely on third-party integration available within the GitHub Marketplace for additional support in securing their Continuous Integration/Continuous Deployment (CI/CD) pipeline from vulnerabilities like Apache Log4j 2.

Marketing 52

Marketing Software 52

Malwarebytes

APRIL 20, 2022

Supported versions that are affected by this flaw are 12.0.0.4 CVE-2022-23305 is a Log4j vulnerability with a CVSS score of 9.8. Note this issue only affects Log4j 1.x x when specifically configured to use the JDBCAppender, which is not the default.) (Note this issue only affects Log4j 1.x and 12.0.0.5.

Authentication 134

Authentication Big data DNS Risk 134

Security Boulevard

APRIL 28, 2022

Business-critical applications like SAP help run your organization—supporting financial systems, human capital management, supply chains, supplier relationships, and more. January 2022: Onapsis and SAP Share Threat Intelligence on Log4j. February 2022: Onapsis and SAP Partner to Discover and Patch Critical ICMAD Vulnerabilities.

Cyber Risk 96

Cyber Risk Risk Cyber Attacks Internet 96

Security Boulevard

DECEMBER 22, 2021

By now you’ve probably already heard of the name “Log4j”. Late November this year, a Chinese researcher named Chen Zhaojun privately disclosed to Log4j maintainers that version 2 of Log4j contains a critical vulnerability that allows unauthenticated remote code execution (RCE) in applications that utilize the library.

Software 52

Software Firewall Authentication Internet 52

Malwarebytes

APRIL 29, 2022

This was a software flaw in the Apache Log4j logging utility. The Cybersecurity and Infrastructure Security Agency (CISA) has launched an open source scanner to find applications that are vulnerable to the Log4j vulnerabilities listed as CVE-2021-44228 and CVE-2021-45046. These are the CVEs that made it into the top 10.

Internet 122

Internet Internet Software Authentication 122

Google Security

SEPTEMBER 15, 2023

If that trust is violated, the consequences can be huge—regardless of whether the package is malicious, or well-intended but using overly broad permissions, such as with Log4j in 2021. Most software packages depend on external libraries, trusting that those packages aren’t doing anything unexpected.

Software 119

Software 119

Security Boulevard

NOVEMBER 24, 2022

Exploit Tools and Targets: Log4j Continues to be Actively Exploited. Log4shell is a remote code execution (RCE) vulnerability in the popular Java logging library log4j, used in multiple software products. Other Iran-linked threat groups have exploited log4j in SysAid Server instances ( 7 ) and VMWare Horizon ( 8 ).

Ransomware 52

Ransomware Government DDOS Cyber Risk 52

The Last Watchdog

MAY 31, 2022

Related: Log4J’s long-run risks. There are configuration weaknesses in cloud resources, vulnerabilities that need patching, like Log4J, and vulnerabilities in the business logic of old code,” Kuffer observes. Vulnerability management, or VM, has long been an essential, if decidedly mundane, component of network security.

Risk 235

Risk Digital transformation Software Technology 235

Security Affairs

JANUARY 3, 2022

The IT giant released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that were actively exploited in the wild.

Cyber Attacks 105

Cyber Attacks Ransomware Insurance Hacking 105

Security Affairs

MARCH 20, 2022

EU and US agencies warn that Russia could attack satellite communications networks Avoslocker ransomware gang targets US critical infrastructure Crooks claims to have stolen 4TB of data from TransUnion South Africa Exotic Lily initial access broker works with Conti gang Emsisoft releases free decryptor for the victims of the Diavol ransomware China-linked (..)

DNS 83

DNS Antivirus DDOS Hacking 83

Security Affairs

SEPTEMBER 8, 2022

Log4j vulnerability ) in VMWare products to achieve initial footholds into enterprise networks. ” “The main goal of these attacks was likely to establish long-term access into victim networks to conduct espionage operations in support of North Korean government objectives.” ” continues the report.

Malware 101

Malware Hacking Government Information Security 101

SecureWorld News

NOVEMBER 17, 2022

Log4Shell, tracked as CVE-2021-44228 , is a remote code execution vulnerability affecting the Apache Log4j library that was discovered in December 2021. RELATED: Cyber Safety Review Board's First Report: Log4j Here to Stay ]. What some might find interesting in this incident is the decision to install cryptomining software.

Government 76

Government Software Cybersecurity Engineering 76

Security Boulevard

APRIL 12, 2022

Business-critical applications from corporations like SAP, Oracle, and Salesforce help run your organization—supporting financial systems, human capital management, supply chains, supplier relationships, and more. Threat Intelligence on Log4j. Department of Homeland Security alerts. Monthly SAP Security Notes.

Internet 52

Internet Internet Cybersecurity Technology 52

SecureWorld News

APRIL 27, 2022

The exploitation of older vulnerabilities demonstrates the continued risk to organizations that fail to patch software in a timely manner or are using software that is no longer supported by a vendor.". CVE-2021-40539 - Zoho ManageEngine AD SelfService Plus, RCE.

VPN 84

VPN Software Internet Internet 84

IT Security Guru

FEBRUARY 16, 2022

The two projects accumulate ~23 million weekly downloads and support ~23,000 projects. When you evaluate this most recent incident in the context of broader DevSecOps issues that OSS introduces – for instance, Log4j , coa/rc , and ua-parsers-js as recent notable examples – it is apparent that stricter controls must be introduced.

Small Business 97

Small Business Software Government Manufacturing 97

SecureWorld News

SEPTEMBER 30, 2022

Check Point says: "Signal decided to also join the effort and support the protests in Iran, helping other people to setup proxy servers that can be used to bypass the censorship in Iran. It shared this screenshot, as well: Two cybersecurity experts shared their thoughts with SecureWorld News regarding the situation in Iran. aerospace company.

Government 85

Government Telecommunications Encryption Internet 85

CyberSecurity Insiders

JANUARY 20, 2022

Now, within just the last 2 or 3 months, everyone wants and needs to provide a Software Bill of Materials to prove the legitimate provenance of their software – and more importantly – the ability to instantly identify untrusted components such as Log4j in their deployments.”.

Software 59

Software Marketing Banking Cybersecurity 59