According to the Apache Software Foundation’s team of experts today, the Log4Shell computer flaw has been permanently closed. The bug had raised fears of a real “cyber apocalypse” with companies and organizations around the world who feared a possible compromise of their systems.
I fix the Log4Shell bug
Apache Software Foundation, a non-profit foundation that developed the software libraries affected by Log4Shell, released theupdate 2.17.1 which completely resolves the flaw that emerged in recent weeks. We remind you that Log4Shell allowed external users the possibility of violating vulnerable platforms without leaving any traces.
It should be noted that, according to i Check Point Research data, since the leak was made public, in Italy about 43% of corporate networks have suffered an attack connected to Log4Shell. It was therefore a huge cyber threat that could potentially generate extremely high risks and economic damage.
The importance of updating systems
The bug, in any case, had been considered to moderate danger. However, it remains a priority to update all the systems affected by the vulnerability to eliminate a flaw that could potentially leave the field open to attackers capable of landing high-level cyber threats.
It remains important to update the systems from version 2.16 to the new 2.17.1. The previous software version, in fact, could have further flaws related to the problem solved with the new update and risks exposing corporate networks to significant cyber threats. Further details may emerge in the near future.