Bitdefender has released new research devoted to the Log4j vulnerability. The research in question highlights how cybercriminals manage to exploit this vulnerability. Log4j is an open source library, part of the Apache Logging Services, written by Java. The library in question finds great framework application behind many popular web sites and services. Java also powers a wide range of very different devices (from car navigation systems to medical devices). Predicting the long-term effect of this vulnerability is difficult.
The results of the Bitdefender Log Vulnerability Survey4j
Bitdefender points out that cybercriminals are attempting to spread exploit vulnerability to spread a new family of ransomware, Khonsari, and to distribute the Trojan (RAT) of Orcus remote access. Attacks are also underway reverse bash shell which aim to gain foothold in a system to be exploited at a later time. Bitdefender data confirms the existence of several botnets that already exploit the Log4j vulnerability. More details are available on Bitdefender site.
Company advice
The company specializing in IT security recommends:
- check the infrastructure and software applications to identify the possible implementation of the Apace Log4j logging framework
- examine the software supply chain
- implement a deep defense approach
- actively monitor the infrastructure
- implement the Bitdefender EDR solution