%term

Simulating, Detecting, and Responding to Log4Shell with Splunk

Dec 17, 2021 By Splunk Threat Research Team In Splunk

For more information on how to respond to the Log4j vulnerabilities using Splunk products, please see our Log4Shell response overview page. Like most cybersecurity teams, the Splunk Threat Research Team (STRT) has been heads-down attempting to understand, simulate, and detect the Log4j attack vector. This post shares detection opportunities STRT found in different stages of successful Log4Shell exploitation.

Read Post

Splunk

Read more about Simulating, Detecting, and Responding to Log4Shell with Splunk

How Kroll is Handling CVE-2021-44228 (Log4J / Log4Shell)

Dec 17, 2021 By Devon Ackerman In Kroll

A critical vulnerability has been recently discovered in the Apache Log4j Java logging library (CVE-2021-44228), a library used in many client and server applications. The Log4j library is commonly included in Java based software including multiple Apache frameworks such as Struts2, Solr, Druid and Fink. The library provides enhanced logging functionality for Java applications and is commonly used in business system development.

Read Post

Kroll

Read more about How Kroll is Handling CVE-2021-44228 (Log4J / Log4Shell)

Webinar: Log4Shell Explained

Dec 16, 2021 By Cyberint In Cyberint

In response to Apache Log4Shell vulnerability gaining worldwide attention, Cyberint's Research team shares the latest insights and recommendations on how to stay protected.

View Video

Cyberint

Read more about Webinar: Log4Shell Explained

The DHS is inviting hackers to break into its systems, but there are rules of engagement

Dec 16, 2021 By Graham Cluley In Tripwire

The United States Department of Homeland Security (DHS) is inviting security researchers to uncover vulnerabilities and hack into its systems, in an attempt to better protect itself from malicious attacks.

Read Post

Tripwire

Read more about The DHS is inviting hackers to break into its systems, but there are rules of engagement

What has the Log4shell vulnerability taught us about application security?

Dec 16, 2021 By Snyk In Snyk

A week ago, we had no idea what Log4shell was. Today, we have the global developer community coming together to keep itself safe from a vulnerability that ranks the highest in terms of risk. We need technical solutions, but what does it mean for the landscape of application security, and what have we learned from this situation?

View Video

Snyk

Read more about What has the Log4shell vulnerability taught us about application security?

LOG4J security vulnerability (Log4Shell)

Dec 16, 2021 By Secude In SECUDE

On Nov. 24th 2021 a severe security vulnerability, called “Log4Shell”, has been reported in the JAVA framework “Log4J” 2.x which is widely used for event logging in JAVA applications worldwide. The vulnerability allows cyber-attackers to execute arbitrary code by injecting it into a logging process implemented in Log4J. The “Log4Shell” vulnerability allows complete server takeover by the attackers.

Read Post

SECUDE

Read more about LOG4J security vulnerability (Log4Shell)

Global outbreak of Log4Shell

Dec 16, 2021 By Santiago Cortes In AT&T Cybersecurity

Log4Shell is a high severity vulnerability (CVE-2021-44228) impacting Apache Log4j versions 2.0 to 2.14.1. It was discovered by Chen Zhaojun of Alibaba Cloud Security Team and disclosed via the project´s GitHub repository on December 9, 2021.

Read Post

AT&T Cybersecurity

Read more about Global outbreak of Log4Shell

Sideloading: "a cybercriminal's best friend"

Dec 16, 2021 By Mikesh Nagar In Redscan

Sideloading is the installation of software from a third party rather than an approved source, for example applications that are not available from official vendors or app stores. This hack is creating yet another valuable opportunity for cybercriminals.

Read Post

Redscan

Read more about Sideloading: "a cybercriminal's best friend"

Exploiting and Mitigating CVE-2021-44228: Log4j Remote Code Execution (RCE)

Dec 16, 2021 By Sysdig In Sysdig

A new critical vulnerability has been found in log4j, a widely-used open-source utility used to generate logs inside java applications. The vulnerability CVE-2021-44228, also known as Log4Shell, permits a Remote Code Execution (RCE) allowing the attackers to execute arbitrary code on the host. The log4j utility is popular and used by a huge number of applications and companies, including the famous game Minecraft. It is also used in various Apache frameworks like Struts2, Kafka, Druid, Flink, and many commercial products.

View Video

Sysdig

Read more about Exploiting and Mitigating CVE-2021-44228: Log4j Remote Code Execution (RCE)

Discovering Log4j in Protected Systems Using Rubrik APIs

Dec 16, 2021 By Jacob Robinson In Rubrik

Rubrik customers have an advantage when it comes to mitigating the log4j crisis. Utilizing our API-first architecture, Rubrik customers can make a single API call to find instances of log4j across their protected systems.

Read Post