Cyber Actors Exploiting Log4j Vulnerabilities in US Networks
Other | 03/11/2022Cyber actors will almost certainly exploit the Apache Log4j vulnerability, publicly disclosed in December 2021 as a severe risk, to compromise unpatched US networks over the coming year. This vulnerability is particularly attractive to malicious actors because websites, applications, and software tools worldwide use Log4j open source software for logging, debugging, and other required functions. Exploiting this flaw could allow cyber actors to steal data, install malware, or conduct ransomware or other cyber attacks. State and non-state cyber actors typically continue to scan for disclosed vulnerabilities in unpatched networks months or years later, according to a US Government report.
To read more, please log in
This site is operated by NetDiligence®. Links found within this site may open a new browser window and take you outside the eRiskHub to another website, the contents of which are maintained by third parties over whom NetDiligence has no control. We provide links to these external sites for your convenience and awareness. We accept no responsibility for the content of linked sites. Upon request of the content source, we will remove links.
© =date('Y');?> NetDiligence®, A Company of Network Standard Corporation