Subsequent Waves of Log4J Attacks Will Be Cruel

Last week, the internet encountered a seismic event. Thanks for Risk in Log4j, a popular open library, many servers around the world were sudden attacks are easy. The first eagle is doing well. But here’s a coming thing that should worry you.

Currently, the main group of Log4j fraud mainly consists of cryptominers, a malware program that removes the tools that were compromised to gain crypto currency. (This was very popular for several years in the past, before anyone realized that real money ransomware) Some international spies have responded, according to recent reports from Microsoft and others. What seems to be missing are the looting, the redemption, the disruptive attacks that have plagued the past two years or so. This will not be the case for long.

Hype is as prevalent in the world of cybersecurity, as is the spread of fear, uncertainty, and suspicion. Many programs have errors; they cannot all so bad. Either way, Log4j risk, also known as Log4Shell, has many causes. The first is the availability of Log4j itself. As a pricing scheme, it enables developers to keep track of what is going on within their software. Because it is an open and reliable source, connecting Log4j instead of building your pricing library from the start has become a permanent habit. In addition, many modern programs are connected together from vendors with a variety of features so that it can be difficult, or impossible, for many who may be concerned to figure out what they look like. If the Matryoshka toy inside your code is running Log4j, good luck with it.

But wait, there is more! Log4Shell is easy to use. Just send the wrong number and wait for it to enter. When this happens, thank you; you can now remotely run anything you want on the affected server. (Warning: This is a short version.

It is this combination of toughness, simplicity, and expansion that has caused the security forces to collapse. “It is a very serious, very serious threat,” said Amit Yoran, CEO of cybersecurity Tenable and a major founder of US-CERT, an organization that oversees confidential responses to digital threats.

So far, however, the tragedy seems to be delayed. Obera follows Log4j; The security company Check Point has seen more than 1.8 million people attempt to exploit the threat since Friday, according to spokesman Ekram Ahmed. In some cases, they have seen more than 100 experiments per minute. And government-backed groups from China and Iran were seen using Log4Shell to implement various methods. However, right now, cryptominers are in control.

Sean Gallagher, senior researcher at Sophos Internet security company, Sean Gallagher said: “They do not want more theft than entry, they do not need keyboard skills to use. They are often packed and ready to go; what they need is hard to come by.”

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *