ZDNet

Log4j: How hackers are using the flaw to deliver this new 'modular' backdoor

Iran-backed hacking group Phosphorous or APT35 is using the Log4j vulnerability to distribute a new modular PowerShell toolkit, according to security firm Check Point. APT35 is one of several ...
ZDNet

Log4j flaw: Now state-backed hackers are using bug as part of attacks, warns Microsoft

State-sponsored hackers from China, Iran, North Korea and Turkey have started testing, exploiting and using the Log4j bug to deploy malware, including ransomware, according to Microsoft. As predicted ...
CRN

Nation-State, Ransomware Groups Using Log4j Bug In Attacks

Hackers in China, Iran, North Korea, and Turkey are capitalizing on the Log4j flaw, with Iran’s Phosphorus group modifying the exploit and China’s Hafnium group hitting virtualization infrastructure, ...
JD Supra

Log4J - Who does it impact?

Takeaway: Organizations of all types and sizes should actively manage exposure to loss due to the Log4j vulnerability. Doing so will not be easy. The Log4j program is present in so many applications ...
Redmond Magazine

Microsoft Sentinel Gets Log4j Exploit Detector Preview

Microsoft added a preview solution in Microsoft Sentinel that helps IT pros find signs of Log4j exploits, according to a Thursday announcement and Twitter post. The Log4j exploit detection preview ...
VentureBeat

Log4j exploits attempted on 44% of corporate networks; ransomware payloads spotted

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Cyberattackers seeking to exploit the widespread vulnerability in Apache ...
Dark Reading

'Proxyjacking' Cybercriminals Exploit Log4j in Emerging, Lucrative Cloud Attacks

Threat actors have found a lucrative new attack vector that hijacks legitimate proxyware services, which allow people to sell portions of their Internet bandwidth to third parties. In large-scale ...
Gizmodo

Log4j: Just How Screwed Are We?

All products featured here are independently selected by our editors and writers. If you buy something through links on our site, Gizmodo may earn an affiliate commission. Reading time 5 minutes Well, ...
Dark Reading

40% of Corporate Networks Targeted by Attackers Seeking to Exploit Log4j

Early concerns about the Log4j vulnerability posing one of the biggest threats to Internet security in recent memory are quickly being confirmed with exploits and exploit activity targeting the flaw ...
CRN

Conti Ransomware Hitting VMware vCenter With Log4j Exploit

‘[The] Log4j2 vulnerability appears … for Conti at the moment when the syndicate has both the strategic intention and the capability to weaponize it for its ransomware goals,’ says AdvIntel in a ...
Rochester Institute of Technology

Apache Log4j Mitigation

Attackers are exploiting a vulnerability in the Log4j logging platform on systems running Apache software that is written in Java and utilizes the log4j library. Critical systems will be impacted.