Microsoft Issues Warning - Log4j Is Not Going Anywhere

Log4j is shaping up to be a miniature version of Covid-19 in the digital space - persistent, all-encompassing, and incredibly difficult to get rid of. The flaw that shook the cyber world, disclosed in early December 2021, is not going anywhere, it seems, at least according to digital security experts with Microsoft.

Microsoft has issued multiple patches to various of its software products in an attempt to address the issue as fully as possible on their end, with an update to Windows Defender too, to potentially help spot the issue on time.

Probing for Log4j Ramps Up

The software giant is warning that after the initial outburst of exploits and the numerous mutations of those exploits that sprung up in December, now state-sponsored threat actors, as well as large cybercriminal outfits, are hopping on board, with attempts to infiltrate systems where the exploit is still unpatched ramping up throughout December.

In an early-January update, the Microsoft 365 Defender Threat Intelligence Team warned that attackers are adding ever new exploits that take advantage of the error logging flaw codenamed Log4j and those new exploits are being incorporated in all sorts of attack vectors, ranging from malware toolkits to crypto-miner malware, to even manual attacks executed movie-hacker style, on an actual keyboard.

Ahead of the new year, Microsoft released an all-in-one dashboard for its Microsoft 365 Defender portal, intended to help spot and rectify any remaining Log4j vulnerabilities and loopholes on their networks. A few days earlier, other big security companies also released their own versions of similar tools working as scanners for Log4j weaknesses.

Dizzying Scope

The family of codified Log4j-related vulnerabilities has been expanded with several new members, all of them given unique CVE designations.

The numbers that are often brought up when discussing Log4j are still staggering. The US CISA estimates that "hundreds of millions" of devices are affected by the Log4j flaw, due to the massive prevalence of the underlying platform across all manners of systems.

By Zaib
January 4, 2022
Computer Security
English
January 4, 2022
Computer Security

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Computer Security

Microsoft Issues Warning for New RAT Targeting Industries

Microsoft Security Intelligence published a series of tweets, warning for the spread of a new strain of malware that targets the aerospace and travel industries. The malware in question has been named RevengeRAT. A... Read more

May 13, 2021
Computer Security

Microsoft Edge Tests Disabling JavaScript JIT Compiler to Boost Security

Microsoft has been running experiments and performance testing with special builds of their Edge browser, where the JavaScript just-in-time compiler is disabled. The goal of the experiment is to see how much of a... Read more

August 5, 2021
Fake Warning Message

'Your Device Might Have Security Issues' Pop-Up Scam

Creators of low-quality software suites, Potentially Unwanted Programs (PUPs,) browser hijackers and adware may often resort to misleading browser ads and pop-ups to propagate their intrusive applications. One of the... Read more

June 18, 2021
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.